RE: IP_Masqing w/ipchains

To: "Steve Lamb" <morpheus@teleute.ml.org>
Cc: <debian-user@lists.debian.org>
Subject: RE: IP_Masqing w/ipchains
From: "Jon Burchmore" <burch@offline.org>
Date: Sun, 25 Oct 1998 13:12:44 -0800
Message-id: <[🔎] 004e01be005c$3591ee60$2001a8c0@gobook2.internal.offline.org>
In-reply-to: <[🔎] E0zXUBp-0003dW-00@teleute.ml.org>

> On Sun, 25 Oct 1998 10:57:10 -0500 (EST), Ben Collins wrote:
> 
> >ipchains -A forward -s 10.0.0.0/255.0.0.0 -d 0.0.0.0/0.0.0.0 -j MASK
> 
>     That is what I tried and it didn't work for some reason.  
> Tried it with
> ipfwadm-wrapper as well, no go.  Finally installed ipmasq and it 
> did it for
> me.  Hate it when I dunno exactly what is going on, but hey, at least it
> works and it isn't like it is the first thing in this system that I'm
> clueless about.  At least now the interfaces report byte counts to
> snmpd/mrtg.  :)

I pulled my hair out for a while trying to get ipchains to do ANYTHING,
and then realized that you have to enable IP forwarding in the 2.1.x
kernels:

echo 1 >/proc/sys/net/ipv4/ip_forward

I added the following lines to /etc/init.d/network on my gateway
system:

echo 1 >/proc/sys/net/ipv4/ip_forward
/sbin/ipchains -A forward -j MASQ -s localnet/24

Hope this helps.

-Jon Burchmore
Director of Software Development, Miva Corporation
Phone: (619) 490-2573	       Fax: (619) 490-0548
PGP Key ID: 0xC5DA3E69  
35D3 78F4 34D5 FE12 D249  F87C F958 7D25 C5DA 3E69

Reply to:

References:
- Re: IP_Masqing w/ipchains
  - From: "Steve Lamb" <morpheus@teleute.ml.org>

Prev by Date: Re: dselect Woes
Next by Date: Re: My mail doesn't work at all :((((((((((((((( (fwd)
Previous by thread: Re: IP_Masqing w/ipchains
Next by thread: Downloading install files
Index(es):
- Date
- Thread