[NTLUG:Discuss] IP Masquerding on RH7.2

Dan Carlson dmcarlsn at yahoo.com
Thu Feb 21 17:33:17 CST 2002


Sorry, I should have said grep REJECT /var/log/messages...

Dan Carlson

----- Original Message -----
From: "Dan Carlson" <dmcarlsn at yahoo.com>
To: <discuss at ntlug.org>
Sent: Thursday, February 21, 2002 4:57 PM
Subject: Re: [NTLUG:Discuss] IP Masquerding on RH7.2


> Turn on logging for the REJECT packets, then grep DENY /var/log/messages
> (or wherever).  This will show you which packets are being rejected,
which
> should provide a clue as to what it happening, maybe even enough
> information to solve the problem.
>
> Dan Carlson
>
> ----- Original Message -----
> From: "Tim Willis" <tim at coderite.com>
> To: <discuss at ntlug.org>
> Sent: Thursday, February 21, 2002 4:40 PM
> Subject: [NTLUG:Discuss] IP Masquerding on RH7.2
>
>
> > Using this configuration I am able to ping IP addresses on my external
> > network and ping IP addresses on the internet.  I am not, however, able
> > to browse the web, or send/receive pop3 traffic.  What's wrong with my
> > setup?
> >
> > [root at sauron sbin]# ./ipchains -L
> > Chain input (policy ACCEPT):
> > target     prot opt     source                destination
> > ports
> > ACCEPT     udp  ------  zaphod.coderite.com  anywhere
> > domain ->   1025:65535
> > ACCEPT     all  ------  anywhere             anywhere              n/a
> > ACCEPT     all  ------  anywhere             anywhere              n/a
> > REJECT     tcp  -y----  anywhere             anywhere              any
> > ->   0:1023
> > REJECT     tcp  -y----  anywhere             anywhere              any
> > ->   nfs
> > REJECT     udp  ------  anywhere             anywhere              any
> > ->   0:1023
> > REJECT     udp  ------  anywhere             anywhere              any
> > ->   nfs
> > REJECT     tcp  -y----  anywhere             anywhere              any
> > ->   x11:6009
> > REJECT     tcp  -y----  anywhere             anywhere              any
> > ->   xfs
> > Chain forward (policy ACCEPT):
> > target     prot opt     source                destination
> > ports
> > MASQ       all  ------  zaphod.coderite.com/24 anywhere
n/a
> > MASQ       all  ------  192.168.1.0/24       anywhere              n/a
> > MASQ       all  ------  192.168.0.0/16       anywhere              n/a
> > MASQ       all  ------  192.168.0.0/16       anywhere              n/a
> > Chain output (policy ACCEPT):
> >
> >
> > _______________________________________________
> > http://www.ntlug.org/mailman/listinfo/discuss
> >
>
>
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
>





More information about the Discuss mailing list