I'm still struggling with a masquerading, packet-filtering dual-homed
host.
Earlier I thought that I had my firewalling rules wrong, but now I think
that it's something more basic.
When I flush all of the firewall rules and set all the defaults to
"accept" I still can't get past the damn thing. I can ftp, telnet etc.
from the firewall to outside, and when all of my rules are set to
"accept" I can ftp and telnet from the firewall to the protected net;
but I still can't make a machine on the protected net communicate with
anything outside the firewall.
I have eth0 assigned to 192.168.1.1 (a non-routable ip address) and eth1
assigned to a real ip number.
Eth1 is listed in /etc/sysconfig/network as the gateway device.
Eth1 is listed in /etc/sysconfig/network-scripts/ifcfg-eth0 as eth0's
gateway device.
Eth0 is listed in /etc/sysconfig/network-scripts/ifcfg-eth1 as eth1's
geteway device.
I've tried the above three settings in several different combinations,
but with no effect as far as I could tell. I do notice that when I have
any ethernet card set to look at a gateway which violates its subnet
mask, I get an error on the boot; something about setting rx bits and
some function that's not found. But if I can't set the cards to look at
each other as gateways, how do I route IP from one side of the machine
to the other? (not that it's working now. . .)
I feel like I'm missing something obvious here but I've been staring at
the problem for days and nothing is suggesting itself.
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
