setting up ipmasq
Hi,
I have recompiled my kerenel to have all the required modules
for ipmasq. Then I apt-get installed ipmasq package. My
impression is that things should work straight away...
But I am getting network unreachable when trying to access
internet from a box behind the firewall. I can ping the firewall
with no problem.
Here is the output from /usr/sbin/ipmasq -d, all settings are
default. Can anyone suggest me how to debug the ipmasq package?
Thanks in advance.
Shao.
The box I am trying to acess the internet is 192.168.1.2.
Firewall(192.168.1.1) is running 2.2.16, the client is running 2.2.14.
[20:34|pts/0]s2193893@virge % /usr/sbin/ipmasq -d
Interfaces found:
ppp0 129.94.241.56/255.255.255.255
eth0 192.168.1.1/255.255.255.0
/sbin/ipchains -P input DENY
/sbin/ipchains -P output DENY
/sbin/ipchains -P forward DENY
/sbin/ipchains -F input
/sbin/ipchains -F output
/sbin/ipchains -F forward
/sbin/ipchains -A input -j ACCEPT -i lo
/sbin/ipchains -A input -j DENY -i !lo -s 127.0.0.1/255.0.0.0 -l
/sbin/ipchains -A input -j ACCEPT -i eth0 -s 192.168.1.1/255.255.255.0
/sbin/ipchains -A input -j DENY -i ppp0 -s 192.168.1.1/255.255.255.0 -l
/sbin/ipchains -A input -j ACCEPT -i ppp0 -d 129.94.241.56/32
/sbin/ipchains -A forward -j MASQ -i ppp0 -s 192.168.1.1/255.255.255.0
/sbin/ipchains -A output -j ACCEPT -i lo
/sbin/ipchains -A output -j ACCEPT -i eth0 -d 192.168.1.1/255.255.255.0
/sbin/ipchains -A output -j ACCEPT -i eth0 -d 224.0.0.0/240.0.0.0 -p !
tcp
/sbin/ipchains -A output -j DENY -i ppp0 -d 192.168.1.1/255.255.255.0 -l
/sbin/ipchains -A output -j ACCEPT -i ppp0 -s 129.94.241.56/32
echo "1" > /proc/sys/net/ipv4/ip_forward
/sbin/ipchains -M -S 7200 10 160
/sbin/ipchains -A input -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l
/sbin/ipchains -A output -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l
/sbin/ipchains -A forward -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l
--
____________________________________________________________________________
Shao Zhang - Running Debian 2.1 ___ _ _____
Department of Communications / __| |_ __ _ ___ |_ / |_ __ _ _ _ __ _
University of New South Wales \__ \ ' \/ _` / _ \ / /| ' \/ _` | ' \/ _` |
Sydney, Australia |___/_||_\__,_\___/ /___|_||_\__,_|_||_\__, |
Email: shao@cia.com.au |___/
_____________________________________________________________________________
Reply to: