Martyn Wendon wrote:
> So far I've fitted 2 network cards in the Linux box, eth0 is 172.18.9.100
> and is connected to the router and eth1 is 172.18.9.101 and is connected to
> the hub of the internal network. I've enabled routing in linuxconf, and the
> default gateway is set at 172.18.9.30, at this point from this Linux box I
> assumed that I would be able to a:) ping the other machines on my network
> and b:) be able to ping the router / internet. But I can only ping the
> router and the internet, not the internal network. I also assumed
> (wrongly?) that I'd still be able to ping the router / internet from the
> rest of the machines. So now I'm a little stuck - too many years of plug
> and pray with Microsoft have taken their toll!
At least you have seen the light now! :)
To get this to work properly, you need to have packet forwarding enabled
in your kernel, so you will have to recompile your kernel. It's in the
IP Settings, IP Firewalling.
Depending on the version of LM you have, you will be using iptables or
ipchains, which set up your firewall rules.
http://www.bastille-linux.org is a good place to start on firewalling.
It can be as simple or as complex as you desire.
I haven't touched iptables yet, and as I understand the situation, there
are still some potential security problems with iptables, so you may
want to steer clear for now.
Once you get the kernel rebuilt, have a look at the Firewall HOWTO to
get started with ipchains.
HTH.
--
Craig Sprout
Network Administrator
Crown Parts and Machine
http://www.crownpartsandmachine.com
