Hello!

Our network consists of two computers. One server, one workstation. We are connecting to the Internet by ADSL with dynamic ip. The problem is, that when we try to play Quake 3 online everything is fine on the server machine, but a problem occurs when we try to play on the workstation (we can connect to Internet servers, but after connection we have "Connection interrupted" message all the time). Everything but Quake works fine (www, Starcraft, mail, ssh, ICQ, etc.).

Our masquerade file looks like this:

We think the problem is port forwarding.

Any suggestion? Thx for any help!

Regards

Since you are NATing this line is not necessary:

iptables -t filter -A FORWARD -s 0/0 -d 192.168.0.0/255.255.255.0 -j ACCEPT

This is because the packets that enter your machine will have a destination that is the same as your dynamic IP at that moment. Since you don't have a match in the NAT chain that translates your dynamic IP to your internal network, this line is useless.

Instead, before this line:

iptables -t filter -A FORWARD -s 192.168.0.0/255.255.255.0 -d 0/0 -j ACCEPT

I would add:

iptables -t filter -A FORWARD -m state --state ESTABLISHED, RELATED -j ACCEPT

This might solve your problem since what I think is wrong is that the first connection passes (letting you actually connect to the Internet servers) but when the server tries to create related connections for the actual game, there is no match to accept the incoming packet.

Anyway give that a try. If you have any questions feel free to ask me.
Good luck.

It still doesn't work
I've read all the iptables manuals but i can't find what i did wrong with this script.
please help me
Regards,