Re: ...no Masquerade...?

To: John Pearson <huiac@camtech.net.au>
Cc: debian-user@lists.debian.org
Subject: Re: ...no Masquerade...?
From: Jeff Gordon <jeff.gordon@wellnow.com>
Date: Sat, 25 Mar 2000 03:02:52 -0500
Message-id: <[🔎] 20000325030252.A1466@www2.wellnow.com>
In-reply-to: <no.id>; from huiac@camtech.net.au on Sat, Mar 25, 2000 at 05:37:19PM +1030

Hi, John --

> Um.. in spite of what Andrew said, they're not modules.
> ipfwadm is an IP packet firewall/masquerading setup 
> utility that works with kernel 2.0.x; ipchains is similar, 
> but for kernel 2.2.x.

(Okay.)

> # ipchains -L input
> for kernel 2.2.x.
> 
> This should list the default policy and rules for accepting 
> incoming packets, if your kernel supports IP firewalling (which 
> is required for IP masquerading).

Okay--the policy at present is one I set up awhile ago, basically
allowing bidirectional forwarding on everything. :-)  We realized that
if we didn't do that, my brother's packets would never make it out the
door -- but we're still left with problems of how to get responding
packets back to his machine, which (as I understand it, anyway) is
where the Masq bits come into play -- and the kernel is saying
Masquerading is not enabled -- so are we back at Andrew's original
statement, that I need to compile a kernel in which Masquerading -is-
enabled as the next order of business...?  (I hope so 'cause I'm
downloading about 18 megs right now in order to do that. :-)

-- 

 -- Jeff --   <http://www.wellnow.com>

 "There's nothing left in the world to prove.  All that's worth doing
  is to love one another, using whatever means are available to serve."

Reply to:

Follow-Ups:
- Re: ...no Masquerade...?
  - From: John Pearson <huiac@camtech.net.au>

Prev by Date: Re: ...no Masquerade...?
Next by Date: Re: how to stop inetd,nfs,etc. daemons?
Previous by thread: Re: ...no Masquerade...?
Next by thread: Re: ...no Masquerade...?
Index(es):
- Date
- Thread