[HS] partage de connexion internet / debian --> mac os x
bonjour,
c'est un peu long ...
j'ai des problèmes pour partager ma connexion internet sur une configuration dont voici les
caracteristiques:
j'accède à internet par un routeur wrt54gl(192.168.0.3) "accroché" en wifi (mode client bridge)
à une neufbox(192.168.0.1)
et connecté en ethernet à la carte reseau pcmcia (eth0) de mon portable
(debian etch 2.6.16-2-686 à jour).
/etc/network/interfaces
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet dhcp
ifconfig eth0
eth0 Lien encap:Ethernet HWaddr 00:08:D7:92:15:DC
inet adr:192.168.0.6 Bcast:192.168.0.255 Masque:255.255.255.0
adr inet6: fe80::208:d7ff:fe92:15dc/64 Scope:Lien
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9432 errors:0 dropped:0 overruns:0 frame:0
TX packets:9268 errors:0 dropped:0 overruns:0 carrier:37
collisions:0 lg file transmission:1000
RX bytes:1757376 (1.6 MiB) TX bytes:786288 (767.8 KiB)
Interruption:3 Adresse de base:0x300
j'ai d'autre part une carte pcmcia wpc54g version 3 configuré par ndiswrapper.
parametrage à la main par iwconfig et ifconfig:
iwconfig wlan0
wlan0 IEEE 802.11b ESSID:"monreseau"
Mode:Ad-Hoc Frequency:2.462 GHz Cell: 02:00:F0:69:9A:1A
Bit Rate:11 Mb/s Tx-Power:25 dBm
RTS thr:2347 B Fragment thr:2346 B
Encryption key:off
Power Management:off
Link Quality:100/100 Signal level:-38 dBm Noise level:-256 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0
ifconfig wlan0
wlan0 Lien encap:Ethernet HWaddr 00:14:BF:26:C2:FD
inet adr:172.16.2.24 Bcast:172.16.255.255 Masque:255.255.0.0
adr inet6: fe80::214:bfff:fe26:c2fd/64 Scope:Lien
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:10 errors:0 dropped:0 overruns:0 frame:0
TX packets:19 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 lg file transmission:1000
RX bytes:588 (588.0 b) TX bytes:1182 (1.1 KiB)
Interruption:11 Mémoire:26000000-26002000
j'essaye de partager cette connexion internet en wifi par la wpc54g avec un ibook(mac os 10.3.9)
tcp/ip d'airport en 172.16.2.22/255.255.0.0 et firewall désactivé
sur la debian dans iptables il y a (paramétré par firestarter un peu au pif):
iptables -v -L est en fichier joint car vraiment trop long
iptables -v -L -t nat
Chain PREROUTING (policy ACCEPT 111 packets, 11966 bytes)
pkts bytes target prot opt in out source destination
0 0 DNAT tcp -- eth0 any anywhere anywhere tcp
dpt:www to:172.16.2.22:80
0 0 DNAT udp -- eth0 any anywhere anywhere udp
dpt:www to:172.16.2.22:80
0 0 DNAT tcp -- eth0 any anywhere anywhere tcp
dpt:www to:172.16.2.24:80
0 0 DNAT udp -- eth0 any anywhere anywhere udp
dpt:www to:172.16.2.24:80
Chain POSTROUTING (policy ACCEPT 6 packets, 424 bytes)
pkts bytes target prot opt in out source destination
502 23828 MASQUERADE all -- any eth0 anywhere anywhere
Chain OUTPUT (policy ACCEPT 508 packets, 24252 bytes)
pkts bytes target prot opt in out source destination
route
Table de routage IP du noyau
Destination Passerelle Genmask Indic Metric Ref Use Iface
localnet * 255.255.255.0 U 0 0 0 eth0
172.16.0.0 * 255.255.0.0 U 0 0 0 wlan0
default 192.168.0.1 0.0.0.0 UG 0 0 0 eth0
l'ibook est sur le meme essid "monreseau" que la debian et ils se "pinguent" bien.
depuis debian:
ping 172.16.2.22(ibook)
PING 172.16.2.22 (172.16.2.22) 56(84) bytes of data.
64 bytes from 172.16.2.22: icmp_seq=1 ttl=64 time=1.54 ms
64 bytes from 172.16.2.22: icmp_seq=2 ttl=64 time=1.48 ms
--- 172.16.2.22 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 1.488/1.514/1.540/0.026 ms
depuis ibook:
ping 172.16.2.24(debian)
PING 172.16.2.24 (172.16.2.24): 56 data bytes
64 bytes from 172.16.2.24: icmp_seq=0 ttl=64 time=1.796 ms
64 bytes from 172.16.2.24: icmp_seq=1 ttl=64 time=2.058 ms
^C
--- 172.16.2.24 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max = 1.796/1.927/2.058 ms
mais sur l'ibook impossible d'avoir google (par exemple) avec firefox.
pour les courageux qui sont arrivés jusque là
est-ce que vous auriez une idée?
merci.
à plus.
hého
iptables -v -L
Chain INBOUND (4 references)
pkts bytes target prot opt in out source destination
50831 4148K ACCEPT tcp -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 ACCEPT udp -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 ACCEPT all -- any any 172.16.2.22 anywhere
0 0 ACCEPT all -- any any 192.168.0.6 anywhere
0 0 ACCEPT tcp -- any any 172.16.2.22 anywhere tcp dpt:www
0 0 ACCEPT udp -- any any 172.16.2.22 anywhere udp dpt:www
0 0 ACCEPT tcp -- any any 172.16.2.24 anywhere tcp dpt:www
0 0 ACCEPT udp -- any any 172.16.2.24 anywhere udp dpt:www
0 0 LSI all -- any any anywhere anywhere
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT tcp -- any any 192.168.0.1 anywhere tcp flags:!FIN,SYN,RST,ACK/SYN
371 37486 ACCEPT udp -- any any 192.168.0.1 anywhere
16 1207 ACCEPT all -- lo any anywhere anywhere
20 1680 ACCEPT icmp -- any any anywhere anywhere limit: avg 10/sec burst 5
120 21896 DROP all -- eth0 any anywhere 255.255.255.255
119 9282 DROP all -- any any anywhere 192.168.0.255
0 0 DROP all -- any any BASE-ADDRESS.MCAST.NET/8 anywhere
0 0 DROP all -- any any anywhere BASE-ADDRESS.MCAST.NET/8
0 0 DROP all -- any any 255.255.255.255 anywhere
0 0 DROP all -- any any anywhere 0.0.0.0
0 0 DROP all -- any any anywhere anywhere state INVALID
0 0 LSI all -f any any anywhere anywhere limit: avg 10/min burst 5
50831 4148K INBOUND all -- eth0 any anywhere anywhere
0 0 INBOUND all -- wlan0 any anywhere 172.16.2.24
0 0 INBOUND all -- wlan0 any anywhere 192.168.0.6
0 0 INBOUND all -- wlan0 any anywhere 172.16.255.255
0 0 LOG_FILTER all -- any any anywhere anywhere
0 0 LOG all -- any any anywhere anywhere LOG level info prefix `Unknown Input'
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT icmp -- any any anywhere anywhere limit: avg 10/sec burst 5
0 0 TCPMSS tcp -- any any anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
0 0 ACCEPT tcp -- eth0 any anywhere 172.16.2.22 tcp dpt:www
0 0 ACCEPT udp -- eth0 any anywhere 172.16.2.22 udp dpt:www
0 0 ACCEPT tcp -- eth0 any anywhere 172.16.2.24 tcp dpt:www
0 0 ACCEPT udp -- eth0 any anywhere 172.16.2.24 udp dpt:www
0 0 OUTBOUND all -- wlan0 any anywhere anywhere
0 0 ACCEPT tcp -- any any anywhere 172.16.0.0/16 state RELATED,ESTABLISHED
0 0 ACCEPT udp -- any any anywhere 172.16.0.0/16 state RELATED,ESTABLISHED
0 0 LOG_FILTER all -- any any anywhere anywhere
0 0 LOG all -- any any anywhere anywhere LOG level info prefix `Unknown Forward'
Chain LOG_FILTER (5 references)
pkts bytes target prot opt in out source destination
Chain LSI (2 references)
pkts bytes target prot opt in out source destination
0 0 LOG_FILTER all -- any any anywhere anywhere
0 0 LOG tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
0 0 DROP tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN
0 0 LOG tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
0 0 DROP tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST
0 0 LOG icmp -- any any anywhere anywhere icmp echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
0 0 DROP icmp -- any any anywhere anywhere icmp echo-request
0 0 LOG all -- any any anywhere anywhere limit: avg 5/sec burst 5 LOG level info prefix `Inbound '
0 0 DROP all -- any any anywhere anywhere
Chain LSO (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG_FILTER all -- any any anywhere anywhere
0 0 LOG all -- any any anywhere anywhere limit: avg 5/sec burst 5 LOG level info prefix `Outbound '
0 0 REJECT all -- any any anywhere anywhere reject-with icmp-port-unreachable
Chain OUTBOUND (3 references)
pkts bytes target prot opt in out source destination
27 2268 ACCEPT icmp -- any any anywhere anywhere
49871 2521K ACCEPT tcp -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 ACCEPT udp -- any any anywhere anywhere state RELATED,ESTABLISHED
893 39292 ACCEPT all -- any any anywhere anywhere
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT tcp -- any any 192.168.0.6 192.168.0.1 tcp dpt:domain
253 16300 ACCEPT udp -- any any 192.168.0.6 192.168.0.1 udp dpt:domain
16 1207 ACCEPT all -- any lo anywhere anywhere
0 0 DROP all -- any any BASE-ADDRESS.MCAST.NET/8 anywhere
0 0 DROP all -- any any anywhere BASE-ADDRESS.MCAST.NET/8
0 0 DROP all -- any any 255.255.255.255 anywhere
0 0 DROP all -- any any anywhere 0.0.0.0
0 0 DROP all -- any any anywhere anywhere state INVALID
50764 2560K OUTBOUND all -- any eth0 anywhere anywhere
27 2268 OUTBOUND all -- any wlan0 anywhere anywhere
0 0 LOG_FILTER all -- any any anywhere anywhere
0 0 LOG all -- any any anywhere anywhere LOG level info prefix `Unknown Output'
Reply to: