On 4/24/05, Willie Wong <[EMAIL PROTECTED]> wrote: > Did you follow the gentoo home router guide? I suggest you start > over... with the line that says > > iptables -F > > you have LOTS of duplicate rules in your chain, and some of them > doesn't make sense: you don't want > > ACCEPT all -- anywhere anywhere > > to be on the top of your INPUT chain, since that destroys the whole > purpose of having an iptables. > > One helpful command is > > iptables -D chain rulenum > > for example, in the case of the aforementioned ACCEPT policy in the > INPUT chain, you do > > iptables -D INPUT 1 > > to remove the top most item. Keep in mind that the rules are > renumbered everytime you make a change. > > I suspect, since you are doing routing, that you have multiple > interfaces. In that case, it would make much more sense to post > > iptables -L -v > > so we can see which interface the rules applies to. > At present. my 2 PCs can talk to each others. WinPC can resolve hostnames by nslookup, but can use internet.
askar -- gentoo-user@gentoo.org mailing list
