[NTLUG:Discuss] IP Masquerding on RH7.2
Dan Carlson
dmcarlsn at yahoo.com
Thu Feb 21 17:33:17 CST 2002
Sorry, I should have said grep REJECT /var/log/messages...
Dan Carlson
----- Original Message -----
From: "Dan Carlson" <dmcarlsn at yahoo.com>
To: <discuss at ntlug.org>
Sent: Thursday, February 21, 2002 4:57 PM
Subject: Re: [NTLUG:Discuss] IP Masquerding on RH7.2
> Turn on logging for the REJECT packets, then grep DENY /var/log/messages
> (or wherever). This will show you which packets are being rejected,
which
> should provide a clue as to what it happening, maybe even enough
> information to solve the problem.
>
> Dan Carlson
>
> ----- Original Message -----
> From: "Tim Willis" <tim at coderite.com>
> To: <discuss at ntlug.org>
> Sent: Thursday, February 21, 2002 4:40 PM
> Subject: [NTLUG:Discuss] IP Masquerding on RH7.2
>
>
> > Using this configuration I am able to ping IP addresses on my external
> > network and ping IP addresses on the internet. I am not, however, able
> > to browse the web, or send/receive pop3 traffic. What's wrong with my
> > setup?
> >
> > [root at sauron sbin]# ./ipchains -L
> > Chain input (policy ACCEPT):
> > target prot opt source destination
> > ports
> > ACCEPT udp ------ zaphod.coderite.com anywhere
> > domain -> 1025:65535
> > ACCEPT all ------ anywhere anywhere n/a
> > ACCEPT all ------ anywhere anywhere n/a
> > REJECT tcp -y---- anywhere anywhere any
> > -> 0:1023
> > REJECT tcp -y---- anywhere anywhere any
> > -> nfs
> > REJECT udp ------ anywhere anywhere any
> > -> 0:1023
> > REJECT udp ------ anywhere anywhere any
> > -> nfs
> > REJECT tcp -y---- anywhere anywhere any
> > -> x11:6009
> > REJECT tcp -y---- anywhere anywhere any
> > -> xfs
> > Chain forward (policy ACCEPT):
> > target prot opt source destination
> > ports
> > MASQ all ------ zaphod.coderite.com/24 anywhere
n/a
> > MASQ all ------ 192.168.1.0/24 anywhere n/a
> > MASQ all ------ 192.168.0.0/16 anywhere n/a
> > MASQ all ------ 192.168.0.0/16 anywhere n/a
> > Chain output (policy ACCEPT):
> >
> >
> > _______________________________________________
> > http://www.ntlug.org/mailman/listinfo/discuss
> >
>
>
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list