Alcatel Frog and Internet Sharing
Hi All,
I have just converted my XP box across to redhat 9, I have managed to install just about everything a productive person needs to have installed, Digital Camera,USB MAss Storage (Not 2.0 YET :-()Multimedia the LOT not even my windows box felt so powerful and that cost me a bloody fortune, oh and dvds that work hahahahahaha.
I am basically building a gateway for the home etc and want to lock an old laptop up in a cupboard somewhere to allow me to control the internet and all the crap that comes theses days to protect innocent surfers, only LINUX will allow me to do this.
NOOB radar is on NOW
I have gone round in circles trying to share my working Alcatel Frog internet connection on my Redhat 9 box with my Redhat 9 box LOL
so I can fully communicate on the lan and ssh and pass encrypted keys with both machines etc I can do everything but forward internet packets.
DNS type ping fails from the client to the internet but works on the gateway, on the networked laptop I can ping the ppp0 address and it returns, in the P t P address it fails ? I am almost there just not sure whats stopping my packets from getting beyond the modem out to the internet, I have tried to ping the internet and also the ip address for that DNS and both fail just for clarity, i tried to ping the nameservers and they fail too.
So I get as far as the modem if anyone can point me to a topic that covers this I would be grateful. I am on the last issue for my full conversion from windows to redhat linux......
my setup is simple two pcs one is a gateway and both machines are connected via ethernet 100meg via a simple netgear switch, both are redhat 9.0 uname reveals the standard 2.4.20-8 kernel
(yup no more windows from here on, I have even converted my family over to use open source software and we have no issues etc etc......)
Now the two boxes have the correct IP address they can ping with ip and host names,, I have setup iptables manually and the result is below
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Lokkit-0-50-INPUT all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere state ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp flags:!SYN,RST,ACK/SYN
DROP all -- anywhere 192.168.1.255
DROP all -- anywhere 192.168.1.255
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT all -- 192.168.1.0/24 anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Lokkit-0-50-INPUT all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
Chain RH-Lokkit-0-50-INPUT (2 references)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp flags:SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh flags:SYN,RST,ACK/SYN
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
REJECT tcp -- anywhere anywhere tcp dpts:0:1023 flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
REJECT tcp -- anywhere anywhere tcp dpt:nfs flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
REJECT udp -- anywhere anywhere udp dpts:0:1023 reject-with icmp-port-unreachable
REJECT udp -- anywhere anywhere udp dpt:nfs reject-with icmp-port-unreachable
REJECT tcp -- anywhere anywhere tcp dpts:x11:6009 flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
REJECT tcp -- anywhere anywhere tcp dpt:xfs flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
this seems a pretty good basic setup for what i need, the question here is no matter what I do my frog will not forward and yes I have all the necessary forwarding bits turned on.
Thanks in advance for any help if I have left out any info or just repeated anything I apologise in advance.
Best
James
Its wonderful to just ./configure LOL
|