On Sat, Aug 22, 1998 at 07:09:03PM -0400, Kevin wrote:
> It now looks like so
>
> ipfwadm -F -p deny
> ipfwadm -F -a m -S 192.168.1.2/24 -D 0.0.0.0/0 -W
> eth1
> ipfwadm -F -a m -S 192.168.1.7/24 -D 0.0.0.0/0 -W
> eth1
>
> And yes I did have another machine hiding that I
> wanted to give access to but didn't mention
> because I though it would just add to the
> confusion.
If you want to masquerade only those two hosts, then the mask should be /32 for
each, i.e. 192.168.1.2/32 and 192.168.1.7/32. 192.168.1.2/24 is really the same
as 192.168.1.0/24 -- it's the most significant 24 bits of the address.
And again, if eth0 is the interface to the outside world, out through which
you'd like your masqueraded packets to go (which is how I understood your
situation), then you need -W eth0, not -W eth1. -W refers to the outgoing
interface in -F rules.
Chris
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
