Re: ipfwadm question.
Just a thought. Do you other machines have 192.168.20.254
shown as your gateway?
Marc-Adrian Napoli <marcadrian@cia.com.au> wrote:
: hi all,
: quick ipfwadm question.
: ethernet cards are as so:
: eth0 Link encap:Ethernet HWaddr 00:00:E8:74:32:FD
: inet addr:192.168.20.254 Bcast:192.168.20.255 Mask:255.255.255.0
: UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
: RX packets:3042 errors:0 dropped:0 overruns:0
: TX packets:1038 errors:0 dropped:0 overruns:0
: Interrupt:10 Base address:0xfca0
: eth1 Link encap:Ethernet HWaddr 00:00:E8:D6:D5:21
: inet addr:203.17.240.6 Bcast:203.17.240.255 Mask:255.255.255.224
: UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
: RX packets:14850 errors:0 dropped:0 overruns:0
: TX packets:1203 errors:0 dropped:0 overruns:0
: Interrupt:11 Base address:0xfcc0
: machine running IP masquerading for a 192.168.20 network. Through eth0 i can
: ping all internal machines (who are getting IP's off dhcp running off the
: eth0 of this machine). Through eth1 i can ping sites outside on the net.
: [root@fw init.d]# ipfwadm -I -l
: IP firewall input rules, default policy: accept
: [root@fw init.d]# ipfwadm -O -l
: IP firewall output rules, default policy: accept
: [root@fw init.d]# ipfwadm -F -l
: IP firewall forward rules, default policy: accept
: type prot source destination ports
: acc/m all 192.168.20.0/24 anywhere n/a
: None of the 192.168.20 machines can get anything out on the web. (nor any
: other sort of traffic for that matter). I'm assuming there is a problem with
: the masquerading.
: Am i missing anything here?
: Regards,
: Marc-Adrian Napoli
: Connect Infobahn Australia
: +61 2 92811750
: --
: Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
--
*********************** Running Debian Linux ***********************
* For God so loved the world that He gave his only begotten Son, *
* that whoever believes in Him should not perish... John 3:16 *
* W. Paul Mills * Topeka, Kansas, U.S.A. *
* EMAIL= Paul@Mills-USA.com * WWW= http://Mills-USA.com/ *
* Bill, I was there several years ago, why would I want to go back? *
************* pgp public key on keyservers everywhere? *************/
--
Reply to: