On 12/25/07, wanderlust <[EMAIL PROTECTED]> wrote: > У пн, 2007-12-24 у 13:43 +1100, hce пише: > > Hi, > > > > I am doing an experiment to set up a home wifi network. The setup is > > descripbed as follows: > > > > I have a laptop running Debian connected to the ISP via phone line > > (ppp), the laptop has also an ethernet port, I set it to 192.168.5.1 > > which connectes to a wifi router at Internet port. The wifi local LAN > > IP address to 192.168.2.1. The nameserver in laptop is assigned by > > ISP 139.134.2.190 and the default gw in laptop does not have an IP > > address, but the iface = ppp0. > > > > I have another desktop connect tot he wifi LAN via udhcpc, it gets the > > ip address 192.168.0.252 from DHCP server of wifi route. On the > > desktop, the nameserver in resolv.conf sets to 192.168.0.1 and default > > gw sets to 192.168.0.1. But, the desktop could not connect to the > > internet. Any help what I was missing? > > > > Thank you. > > > > Jim > > > > > > Here is an iptables config from my wifi-network: > > # Generated by iptables-save v1.3.8 on Tue Dec 25 13:24:19 2007 > *nat > :PREROUTING ACCEPT [63410:4479749] > :POSTROUTING ACCEPT [39259:2493913] > :OUTPUT ACCEPT [39199:2418755] > -A POSTROUTING -s 192.168.0.0/255.255.255.0 -o ppp0 -j MASQUERADE > -A POSTROUTING -s 192.168.1.0/255.255.255.0 -o ppp0 -j MASQUERADE > COMMIT > # Completed on Tue Dec 25 13:24:20 2007 > # Generated by iptables-save v1.3.8 on Tue Dec 25 13:24:20 2007 > *filter > :INPUT ACCEPT [4558907:4280157754] > :FORWARD ACCEPT [592010:86851941] > :OUTPUT ACCEPT [4204932:1208883656] > COMMIT > # Completed on Tue Dec 25 13:24:20 2007 > # Generated by iptables-save v1.3.8 on Tue Dec 25 13:24:20 2007 > *mangle > :PREROUTING ACCEPT [5151583:4367072131] > :INPUT ACCEPT [4558907:4280157754] > :FORWARD ACCEPT [592010:86851941] > :OUTPUT ACCEPT [4204932:1208883656] > :POSTROUTING ACCEPT [4797376:1295842013] > -A FORWARD -o ppp0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss > 1400:1536 -j TCPMSS --clamp-mss-to-pmtu > COMMIT > # Completed on Tue Dec 25 13:24:20 2007 > > My configuration is: LAN (192.168.2.0) -> (192.168.2.254) wifi-router > (192.168.1.18) -> (192.168.1.1) InetServer (PPPoE connection) -> DSL > modem -> Provider > > Router is taking IP address via DHCP from InetServer, and InetServer is > taking DNS and etc from provider. > > Sincerely, > wanderlust
Thanks wanderlust, it is really good reference of iptable set up. I'll change my iptables according to it. Thank you. Kind Regards, Jim