Re: masquerading (NAT) firewall with firewall-easy

To: debian-firewall@lists.debian.org
Subject: Re: masquerading (NAT) firewall with firewall-easy
From: Edmund GRIMLEY EVANS <edmundo@rano.org>
Date: Sun, 11 Jul 2004 12:05:34 +0100
Message-id: <[🔎] 20040711110534.sdtB3X.2bzIvb@rano.org>
In-reply-to: <[🔎] 20040711084028.pWyiEg.qPS7mp@rano.org>
References: <[🔎] 20040711084028.pWyiEg.qPS7mp@rano.org>

Interesting. I gave up on firewall-easy and tried firehol instead. The
instructions seem quite clear, and I wrote the config file below.

Everything seems to work nicely ... but still no masquerading.

Is there some separate, independent, global option that has to be set
correctly for masquerading to work at all?


# The network of our eth1 LAN.
home_ips="192.168.1.4/24"

interface eth1 home src "${home_ips}"
	server all accept
	client all accept

interface eth0 internet src not "${home_ips} ${UNROUTABLE_IPS}"
	protection strong 10/sec 10
	client all accept

router home2internet inface eth1 outface eth0
	masquerade
	route all accept

Reply to:

Follow-Ups:
- Re: masquerading (NAT) firewall with firewall-easy
  - From: Edmund GRIMLEY EVANS <edmundo@rano.org>

References:
- masquerading (NAT) firewall with firewall-easy
  - From: Edmund GRIMLEY EVANS <edmundo@rano.org>

Prev by Date: Re: masquerading (NAT) firewall with firewall-easy
Next by Date: Re: masquerading (NAT) firewall with firewall-easy
Previous by thread: Re: masquerading (NAT) firewall with firewall-easy
Next by thread: Re: masquerading (NAT) firewall with firewall-easy
Index(es):
- Date
- Thread