RE: IP_Masqing w/ipchains
> On Sun, 25 Oct 1998 10:57:10 -0500 (EST), Ben Collins wrote:
>
> >ipchains -A forward -s 10.0.0.0/255.0.0.0 -d 0.0.0.0/0.0.0.0 -j MASK
>
> That is what I tried and it didn't work for some reason.
> Tried it with
> ipfwadm-wrapper as well, no go. Finally installed ipmasq and it
> did it for
> me. Hate it when I dunno exactly what is going on, but hey, at least it
> works and it isn't like it is the first thing in this system that I'm
> clueless about. At least now the interfaces report byte counts to
> snmpd/mrtg. :)
I pulled my hair out for a while trying to get ipchains to do ANYTHING,
and then realized that you have to enable IP forwarding in the 2.1.x
kernels:
echo 1 >/proc/sys/net/ipv4/ip_forward
I added the following lines to /etc/init.d/network on my gateway
system:
echo 1 >/proc/sys/net/ipv4/ip_forward
/sbin/ipchains -A forward -j MASQ -s localnet/24
Hope this helps.
-Jon Burchmore
Director of Software Development, Miva Corporation
Phone: (619) 490-2573 Fax: (619) 490-0548
PGP Key ID: 0xC5DA3E69
35D3 78F4 34D5 FE12 D249 F87C F958 7D25 C5DA 3E69
Reply to: