Hi;
With everything I've been working on getting masquerade up, somehow
I blew the whole thing out of the water. Now, nothing works.
The setup -
Linux box with 2 nics, one registered, one private.
Kernel 2.0.33 configured as outlined below.
Ipfwadm rules are lised below.
At this point I can not even get ping to work past the Linux box.
I can ping both interfaces from a masq'd node and can ping anywhare from the
Linux box.
I've been putzing with this for so long I've proabably done something stupid
and just can't see it.
Thanks in advance.
Jeff
Kernel config -
# Code maturity level options
#
CONFIG_EXPERIMENTAL=y
#
# Loadable module support
#
CONFIG_MODULES=y
# CONFIG_MODVERSIONS is not set
CONFIG_KERNELD=y
<<snip>>
#
# Networking options
#
CONFIG_FIREWALL=y
# CONFIG_NET_ALIAS is not set
CONFIG_INET=y
CONFIG_IP_FORWARD=y
# CONFIG_IP_MULTICAST is not set
# CONFIG_SYN_COOKIES is not set
# CONFIG_RST_COOKIES is not set
CONFIG_IP_FIREWALL=y
CONFIG_IP_FIREWALL_VERBOSE=y
CONFIG_IP_MASQUERADE=y
# CONFIG_IP_MASQUERADE_IPAUTOFW is not set
CONFIG_IP_MASQUERADE_IPPORTFW=y
CONFIG_IP_MASQUERADE_ICMP=y
# CONFIG_IP_TRANSPARENT_PROXY is not set
CONFIG_IP_ALWAYS_DEFRAG=y
CONFIG_IP_ACCT=y
# CONFIG_IP_ROUTER is not set
# CONFIG_NET_IPIP is not set
# CONFIG_INET_PCTCP is not set
# CONFIG_INET_RARP is not set
# CONFIG_NO_PATH_MTU_DISCOVERY is not set
CONFIG_IP_NOSR=y
CONFIG_SKB_LARGE=y
CONFIG_IPX=m
CONFIG_ATALK=m
# CONFIG_AX25 is not set
# CONFIG_BRIDGE is not set
# CONFIG_NETLINK is not set
<<snip>>
#
# Network device support
#
CONFIG_NETDEVICES=y
CONFIG_DUMMY=y
# CONFIG_EQUALIZER is not set
# CONFIG_DLCI is not set
# CONFIG_PLIP is not set
CONFIG_PPP=y
CONFIG_SLIP=y
CONFIG_SLIP_COMPRESSED=y
CONFIG_SLIP_SMART=y
CONFIG_SLIP_MODE_SLIP6=y
# CONFIG_NET_RADIO is not set
CONFIG_NET_ETHERNET=y
# CONFIG_NET_VENDOR_3COM is not set
CONFIG_LANCE=y
# CONFIG_LANCE32 is not set
# CONFIG_NET_VENDOR_SMC is not set
# CONFIG_NET_ISA is not set
# CONFIG_NET_EISA is not set
# CONFIG_NET_POCKET is not set
# CONFIG_TR is not set
# CONFIG_FDDI is not set
# CONFIG_ARCNET is not set
<<snip>>
#
# Character devices
#
CONFIG_SERIAL=y
# CONFIG_DIGI is not set
# CONFIG_CYCLADES is not set
# CONFIG_STALDRV is not set
# CONFIG_RISCOM8 is not set
CONFIG_PRINTER=y
# CONFIG_SPECIALIX is not set
CONFIG_MOUSE=y
CONFIG_ATIXL_BUSMOUSE=y
# CONFIG_BUSMOUSE is not set
# CONFIG_MS_BUSMOUSE is not set
# CONFIG_PSMOUSE is not set
# CONFIG_UMISC is not set
# CONFIG_QIC02_TAPE is not set
# CONFIG_FTAPE is not set
# CONFIG_APM is not set
# CONFIG_WATCHDOG is not set
# CONFIG_RTC is not set
#
# Sound
#
# CONFIG_SOUND is not set
#
# Kernel hacking
#
# CONFIG_PROFILE is not set
The setup of the interface and modules loaded -
#!/bin/sh
SOS=`/bin/uname -r`
echo ${SOS}
/sbin/insmod /lib/modules/${SOS}/ipv4/ip_masq_cuseeme.o
/sbin/insmod /lib/modules/${SOS}/ipv4/ip_masq_ftp.o
/sbin/insmod /lib/modules/${SOS}/ipv4/ip_masq_irc.o
/sbin/insmod /lib/modules/${SOS}/ipv4/ip_masq_quake.o
/sbin/insmod /lib/modules/${SOS}/ipv4/ip_masq_raudio.o
/sbin/insmod /lib/modules/${SOS}/ipv4/ip_masq_vdolive.o
The forwarding rules -
/sbin/ifconfig eth1 192.168.25.1 mtu 576 netmask 255.255.255.0
/sbin/route add -net 192.168.25.0 netmask 255.255.255.0
/sbin/ipfwadm -I -f
/sbin/ipfwadm -F -f
/sbin/ipfwadm -F -b -a a -S 192.168.25.0/24 -D 204.5.167.0/24 -W eth1
/sbin/ipfwadm -F -b -a a -S 204.5.167.0/24 -D 192.168.25.0/24 -W eth0
/sbin/ipfwadm -F -a m -S 192.168.25.0/24 -W eth1
/sbin/ipfwadm -F -a m -S 204.5.167.0/24 -W eth0
Jeff Adams
[EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
