RE: IP Forwarding - Need a guru.

To: <debian-firewall@lists.debian.org>
Subject: RE: IP Forwarding - Need a guru.
From: "Ryan McAlister" <ryanm@centralpower.com>
Date: Wed, 7 Aug 2002 11:51:59 -0400
Message-id: <[🔎] 1424858E556D684988EEB924E257F8E3125959@cps-exchange2k.centralpower.com>

Thank you. Works like a champ =). Now all I need to do is read up on
IPTABLES.

Thanks again,

Ryan McAlister

-----Original Message-----
From: Vince Mulhollon [mailto:vlm@norlight.com] 
Sent: Wednesday, August 07, 2002 11:28 AM
To: debian-firewall@lists.debian.org
Subject: Re: IP Forwarding - Need a guru.

On 08/07/2002 09:50:55 AM "Ryan McAlister" wrote:

>> I'm trying to setup a firewall machine that will forward packets
only. I
will

>> What am I missing? Do I have to use IPTABLES to accomplish this?

Yes.

Something like:

iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE

That will get you started, but you really need to read the iptables
docs.
Some people report great success and ease of use with the "ipmenu"
package.

Note that the /proc/sys/net/ipv4/ip_forward says it's OK for the kernel
to
forward, it doesn't tell the kernel what to forward where.
The iptables tells the kernel what to forward to where, but doesn't tell
the kernel the overall question of is it OK to forward anything.
Thats why you need both.

-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact
listmaster@lists.debian.org

Reply to:

Prev by Date: Re: IP Forwarding - Need a guru.
Next by Date: Re: Redirect port 80->8080 on the same machine
Previous by thread: Re: IP Forwarding - Need a guru.
Next by thread: Redirect port 80->8080 on the same machine
Index(es):
- Date
- Thread