Re: nat issue

Oleg a écrit : > On Sat, Feb 05, 2011 at 12:57:16PM +0100, Pascal Hambourg wrote: >> >> Another option may be to use a virtual network between virtual machines >> instead of a bridge, so the host does not see the traffic between them. >> I don't know whether KVM provides such option, otherwise VDE

Re: nat issue

On Sat, Feb 05, 2011 at 12:57:16PM +0100, Pascal Hambourg wrote: > Oleg a ?crit : > > On Fri, Feb 04, 2011 at 03:54:20PM +0100, Pascal Hambourg wrote: > >> > >>> Any ideas? > >> Yes, one : just another case of undesirable interaction between bridge > >> and netfilter (aka bridge-netfilter). > [.

Re: nat issue

Oleg a écrit : > On Fri, Feb 04, 2011 at 03:54:20PM +0100, Pascal Hambourg wrote: >> >>> Any ideas? >> Yes, one : just another case of undesirable interaction between bridge >> and netfilter (aka bridge-netfilter). [...] >> Setting sysctl net.bridge.bridge-nf-call-iptables=0 to disable passing >

Re: nat issue

On Fri, Feb 04, 2011 at 03:54:20PM +0100, Pascal Hambourg wrote: > Hello, > > Oleg a ?crit : > > > > INET <-- (eth0)[host](tap0) <-- [kvm1] <-- [kvm2] > > > > host:~# iptables-save > > # Generated by iptables-save v1.4.10 on Thu Feb 3 15:53:45 2011 > > *nat > > :PREROUTING ACCEPT [158:19117]

Re: nat issue

Hello, Oleg a écrit : > > INET <-- (eth0)[host](tap0) <-- [kvm1] <-- [kvm2] > > host:~# iptables-save > # Generated by iptables-save v1.4.10 on Thu Feb 3 15:53:45 2011 > *nat > :PREROUTING ACCEPT [158:19117] > :INPUT ACCEPT [142:17947] > :OUTPUT ACCEPT [1273:77619] > :POSTROUTING ACCEPT [23:1

Re: nat issue

Sorry. I forgot about routes on the host machine: host:~# ip rou 192.168.100.0/24 dev tap0 proto kernel scope link src 192.168.100.2 192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.254 192.168.200.0/24 via 192.168.100.1 dev tap0 default via 192.168.0.1 dev eth0 On Thu, Feb 03, 201

Re: Re: NAT

Hey what do I do Sent from my iPho -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/514ef421-acdc-40ab-bc25-7b306c8d2...@rockscapes.com.au

Re: NAT & forwarding : only partial connections

On Sat, Nov 27, 2004 at 08:08:36PM +0200, Black Dew wrote: > Francesco Bochicchio wrote: > > >What I do is this: > > On the PC : iptables -t NAT -A POSTROUTING -o ppp0 -j MASQUERADE > > AFAIK it should be -t nat (lowercase). Upcase NAT gives the following > error on my system: Yes. I wrongl

Re: NAT & forwarding : only partial connections

Hello! If you use ADSL, you are connected via eth0. The correct parameter is nat and not NAT. Is the FORWARD chain configured as ACCEPT? Try it: #iptables -F #iptables -t nat -F #iptables -P FORWARD ACCEPT #iptables -P POSTROUTING ACCEPT #iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE Assum

Re: NAT & forwarding : only partial connections

Francesco Bochicchio wrote: What I do is this: On the PC : iptables -t NAT -A POSTROUTING -o ppp0 -j MASQUERADE AFAIK it should be -t nat (lowercase). Upcase NAT gives the following error on my system: iptables v1.2.11: can't initialize iptables table `NAT': Table does not exist (do you

Re: NAT & forwarding : only partial connections

On Sat, Nov 27, 2004 at 04:12:31PM +0100, Francesco Bochicchio wrote: > On the PC : iptables -t NAT -A POSTROUTING -o ppp0 -j MASQUERADE IIRC, the table for NAT is named 'nat' (ie, lowercase). I'll bet it's this that's causing the problem. Cheers, Paul -- Paul Dwerryhouse

Re: NAT & forwarding : only partial connections

On Sat, 27 Nov 2004 16:12:31 +0100, Francesco Bochicchio <[EMAIL PROTECTED]> wrote: > Hi all, > > I have a laptop with installed Sarge and a PC with installed Sid. I would > like to implement this schema: > >Laptop <-wireless-> PC+ADSL Modem< phone lines> Provider<..>Internet > > I had it wo

Re: nat and dhcp

Alan Chandler wrote: I am not sure I understood all your snippets, but some things that didn't see correct. Alan, you have giving me a ton of info to process. I'm going sit back and go through it step by step. I definitely appreciate all the suggestions. I'll post what happened when I'm done

Re: nat and dhcp

Stephen Patterson wrote: On Sun, 21 Mar 2004 04:20:07 +0100, uzoma nwosu wrote: /etc/network/interface file snippets. ANY help would be greatly appreciated. Can you also post the results of ifconfig, 'route -n' and the /etc/resolv.conf file from the laptop. sure, all from the laptop. from /e

Re: nat and dhcp

On Sunday 21 March 2004 03:13, uzoma nwosu wrote: > I'm trying to turn my debian box into nat server. So far, I've got the > kernel configured with all the netfilter stuff that the IP > Masquerade-howto on tldp.org said (I'm running 2.4.24, with sarge/sid). > I've installed dhcpd and it seems to r

Re: nat and dhcp

On Sun, 2004-03-21 at 04:13, uzoma nwosu wrote: > I'm trying to turn my debian box into nat server. So far, I've got the > kernel configured with all the netfilter stuff that the IP > Masquerade-howto on tldp.org said (I'm running 2.4.24, with sarge/sid). > I've installed dhcpd and it seems to

Re: nat and dhcp

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 uzoma nwosu wrote: | I'm trying to turn my debian box into nat server. So far, I've got the | kernel configured with all the netfilter stuff that the IP | Masquerade-howto on tldp.org said (I'm running 2.4.24, with sarge/sid). | I've installed dhcpd an

Re: nat and dhcp

On Sun, 21 Mar 2004 04:20:07 +0100, uzoma nwosu wrote: > /etc/network/interface file snippets. ANY help would be greatly > appreciated. Can you also post the results of ifconfig, 'route -n' and the /etc/resolv.conf file from the laptop. -- Stephen Patterson http://patter.mine.nu/ [EMAIL PROTEC

Re: Nat & startup

[EMAIL PROTECTED]: Adrian wrote: > I configure NATing... I use an old P166 box as a dedicated firewall/ NAT router with a purpose-built GNU/Linux distribution: http://smoothwall.org/ Features: - The install is very easy (curses, with hardware detection). - WAN, LAN, and/or DMZ interfaces

Re: Nat & startup

it to the default runlevel. -- Greg - Mensaje original - De: Greg Bolshaw <[EMAIL PROTECTED]> Para: Debian-User <[EMAIL PROTECTED]> Enviado: Miércoles 1 de Octubre de 2003 09:56 Asunto: Re: Nat & startup > Adrian wrote: I configure NATing, but every time i restart debi

RE: Nat & startup

> Enviado: Miércoles 1 de Octubre de 2003 09:56 Asunto: Re: Nat & startup > Adrian wrote: > > > I configure NATing, but every time i restart debian i have to type de nat > > commands again. > > How can i configure it for running at startup? > > Assuming you're u

Re: Nat & startup

Adrian wrote: I configure NATing, but every time i restart debian i have to type de nat commands again. How can i configure it for running at startup? Assuming you're using iptables to do the NATing, just `/etc/init.d/iptables save active` and the rules will be automatically loaded each time ipt

Re: NAT

Ashish Ariga wrote: On Thu, 2003-09-18 at 18:00, Adrian Berardi wrote: Hi, i'm a new debian user, and without too much experience in linux. I'm trying to install a Debian here at home to use it as internet access for a couple windows PCs. Someone told me that i had to install first the two eth,

RE: NAT

try squid. Adrian - Mensaje original - De: Ashish Ariga <[EMAIL PROTECTED]> Para: <[EMAIL PROTECTED]> Enviado: Viernes 19 de Septiembre de 2003 07:05 Asunto: Re: NAT -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: NAT

On Thu, 2003-09-18 at 18:00, Adrian Berardi wrote: > Hi, i'm a new debian user, and without too much experience in linux. > I'm trying to install a Debian here at home to use it as internet > access for a couple windows PCs. > Someone told me that i had to install first the two eth, then > configu

Re: NAT

Adrian Berardi wrote: Hi, i'm a new debian user, and without too much experience in linux. I'm trying to install a Debian here at home to use it as internet access for a couple windows PCs. Someone told me that i had to install first the two eth, then configure the networkcards, then install dhcp

Re: NAT

On Thursday 18 September 2003 5:30 am, Adrian Berardi wrote: > Hi, i'm a new debian user, and without too much experience in linux. > I'm trying to install a Debian here at home to use it as internet access > for a couple windows PCs. Someone told me that i had to install first the > two eth, then

Re: NAT

Hello Adrian Berardi (<[EMAIL PROTECTED]>) wrote: > Hi, i'm a new debian user, and without too much experience in linux. > I'm trying to install a Debian here at home to use it as internet > access for a couple windows PCs. Someone told me that i had to install > first the two eth, then configure

Re: NAT with iptables: dealing with MSN messenger.

On Tue, Feb 25, 2003 at 08:35:37PM -0800, calyth wrote: > Yes I know, MSN messenger isn't that great. > I have this problem: all my computers goes through a NAT "firewall" > using iptables, and with the current rules, I could definately do MSN > (as an IM agent) and receive files with it; however

Re: NAT Question

Hi, I solved this by changing the following rules. 1. masquerading is not bound to the interface but masquerades only traffic that is coming from LAN 2. one DNAT rule that forwards packages to my server if the source is a LAN address and the destination address is my external assigned ad

Re: NAT Question

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wednesday 20 November 2002 10:59, [EMAIL PROTECTED] wrote: > I'm using a DSL line for connecting to the internet and I'm trying to > run a jabber server. > The problem I have is that the jabber server stores each account with > a FQDN. Because I wan

Re: NAT and DSL internet access with dynamic IP and LAN clients

On Thu, May 30, 2002 at 07:55:06PM -0700, Walter Reed wrote: | On Thu, May 30, 2002 at 08:14:11PM -0400, Baran wrote: | | | Baran: The obvious problem you have is that you are running an old version of | windows! You need to install the Debain version of windows which is newer | than even Windows

Re: NAT and DSL internet access with dynamic IP and LAN clients

On Thu, May 30, 2002 at 08:14:11PM -0400, Baran wrote: Baran: The obvious problem you have is that you are running an old version of windows! You need to install the Debain version of windows which is newer than even Windows XP!! Lucky for you that you can download and install Debian Windows for

Re: NAT and DSL internet access with dynamic IP and LAN clients

On Thu, May 30, 2002 at 08:14:11PM -0400, Baran wrote: | NAT and DSL internet access with dynamic IP and LAN clients This is easy : apt-get install ipmasq | i have a DSL internet access with dynamic ip address not fixed | (static) one. No matter. | i try to configure this DSL internet ac

Re: NAT and DSL internet access with dynamic IP and LAN clients

Baran wrote: 1 st Question: NAT and DSL internet access with dynamic IP and LAN clients Hello, i have a DSL internet access with dynamic ip address not fixed (static) one. when i install on a single PC either server or and PC i have the internet access. with ICS works fine as well in win2

Re: NAT translation and Aliased FQDN

Le -09.07.2001 17:34:54-, « Ejay Birkmeyer ([EMAIL PROTECTED]) » a écrit quelques phrases célèbres sur « NAT translation and Aliased FQDN » EB> Hi All.. EB> EB> We are experimenting with debian to use as a masquerading router with our EB> test beds. I cant seem to find any info on this process i

Re: NAT problem, !

sorry, didn't get to quote your message -- some odd format. (in mutt i could read it by going into another level of 'viewer' but it wasn't a quotable option.) On Sun, May 13, 2001 at 10:08:44AM +1000, Steve Kieu wrote: > = > S.KIEU for NAT or masquerading, first set up your firewall box as yo

Re: NAT/MASQ in single NIC

re, Osamu Aoki([EMAIL PROTECTED])@Wed, Feb 28, 2001 at 12:42:23PM -0800: > Well .. I danno... Never done it. Just a thoght which may work. > > Seriously, PCI NIC costs only $20 these days. I have 2 NICs and MASQ > them to access Cable and LAN. It will act as good firewall too. If you only hav

Re: NAT/MASQ in single NIC

Well .. I danno... Never done it. Just a thoght which may work. Seriously, PCI NIC costs only $20 these days. I have 2 NICs and MASQ them to access Cable and LAN. It will act as good firewall too. Osamu PS: One of your e-mail address bounced mail, I think. On Wed, Feb 28, 2001 at 11:23:25PM +

Re: NAT/MASQ in single NIC

have you tried it? On Tue, Feb 27, 2001 at 10:54:51AM -0300, Martin Marconcini wrote: > Yes it's possible. I can't recall the URI now but check www.linuxdoc.org and > the IP_MASQ FAQ. > > > Regards, > > M. > > -Original Message- > From: Ker Ruben Ramos [mailto:[EMAIL PROTECTED] > Sent:

Re: NAT/MASQ in single NIC

what i want to know is if it's possible, if then.. the question is HOW? On Tue, Feb 27, 2001 at 05:31:39AM -0500, Chun Kit Edwin Lau wrote: > Hi > > If you don't have a dial up ppp0, I assume you have things like DSL > or cable. And if that is the case, you better off with 2 NICs since the

Re: NAT/MASQ in single NIC

yeah.. you mean aliasing but I mean how to masq it On Tue, Feb 27, 2001 at 08:05:40PM -0800, Osamu Aoki wrote: > IPALIASING, I guess > > eth0:0 203.170.2.x > eth0:1 192.168.1.1 > > ... > On Tue, Feb 27, 2001 at 09:11:01PM +0800, Ker Ruben Ramos wrote: > > is it possible to do NAT/MASQ in single N

Re: NAT/MASQ in single NIC

IPALIASING, I guess eth0:0 203.170.2.x eth0:1 192.168.1.1 ... On Tue, Feb 27, 2001 at 09:11:01PM +0800, Ker Ruben Ramos wrote: > is it possible to do NAT/MASQ in single NIC with two ip address? if yes, > then how? > > my comp has no dialup PPP > > IPs : 203.170.2.x and 192.168.1.1 > > and I w

Re: NAT/MASQ in single NIC

Hi If you don't have a dial up ppp0, I assume you have things like DSL or cable. And if that is the case, you better off with 2 NICs since the collisions between the network and the internet is so high that it makes it not worth it to have only sigle NIC. Edwin Lau On Tue, 27 Feb 2001

RE: NAT/MASQ in single NIC

Yes it's possible. I can't recall the URI now but check www.linuxdoc.org and the IP_MASQ FAQ. Regards, M. -Original Message- From: Ker Ruben Ramos [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 27, 2001 10:11 AM To: debian-user@lists.debian.org Subject: NAT/MASQ in single NIC is it

Re: NAT

Hi... U, that looks interesting. I don't think Linux's IP-masq system supports that. Alex On Fri, 17 Jul 1998, George Bonser wrote: > Date: Fri, 17 Jul 1998 12:16:03 -0700 (PDT) > From: George Bonser <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > To: debian-user@lists.debian.org > Subj

Re: NAT

Here are a couple of urls regarding nat? I have never set up nat on Linux only Novell, this is the best I can do? http://www.radionet.com/geek/geek19980115.html http://www.netsys.com/firewalls/firewalls-9705/0523.html Keith [EMAIL PROTECTED] You only get one chance at life, but if you do it r

Re: NAT solution for Linux?

Hi! You wrote: > Is there a kernel module and/or software that provides Network Address > Translation (something similar to what Cisco's PIX product does)? I don´t know Cisco´s PIX, but there is domething called NAT at http://www.csn.tu-chemnitz.de/HyperNews/get/linux-ip-nat.html Regards Ra

Re: NAT solution for Linux?

At 16:41 -0600 1998-02-28, Nathan E Norman wrote: >Is there a kernel module and/or software that provides Network Address >Translation (something similar to what Cisco's PIX product does)? There is an implementation of NAT for Linux at

Re: NAT solution for Linux?

On Sat, 28 Feb 1998, Nathan E Norman wrote: > Is there a kernel module and/or software that provides Network Address > Translation (something similar to what Cisco's PIX product does)? You might have a look at this web page: www.linas.org/linux/load.html -- __ _ David S