LinuxQuestions.org - Cannot access Internet through SUSE 9.2 Pro router

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Cannot access Internet through SUSE 9.2 Pro router (https://www.linuxquestions.org/questions/linux-networking-3/cannot-access-internet-through-suse-9-2-pro-router-269666/)

Cannot access Internet through SUSE 9.2 Pro router

I am unable to access the Internet from my internal network through a SUSE 9.2 Pro box that I'm trying to configure as a router.

Here's what I'm doing:

Set up eth0 as a DHCP client. eth0 is the interface connected on the "Internet" side. My ISP is Comcast, which assigns a dynamic IP.

Go into YaST -> Network Services -> DNS and Host Name -> Set host name, and tick "Change host name via DHCP box" -> "Finish"

Set up eth1 with IP address of 192.168.0.1 with subnet mask of 255.255.255.0.

Set up eth1 as DHCP server (obviously for serving internal IP addresses).

Set up routing: YaST -> Network Services -> Routing -> I put in gateway, and tick "Enable IP Forwarding." -> "Finish"

I then set up the firewall, with eth0 as the external interface and eth1 as the internal interface. I have allowed the SSH and DHCP ports to remain open. I ticked the "Enable Forward Traffic" and "Do Masquerading" boxes.

I have copied /etc/resolv.conf from the router box to the client boxes.

From here, I can ping google.com successfully from the router box. I can ping all the internal machines from the router box. I can NOT ping any known Google IP from any of the internal client machines, nor can I ping the actual "google.com" domain. In other words, none of the packets are making it through, not just the requests doing a DNS lookup.

I have been trying for about a week, for a total of about 16 hours to get this working, including looking at a ton of tutorials, articles, and other examples.

If you have other documentation you can point me to, or something else I can fix, set, or check, please let me know. I'm just about at my wit's end with this. I do appreciate any help.

Can you ping the router box from the client boxes? Have you checked what the DHCP service is issuing to the clients to make sure it is accurate?

Sounds like a simple thing to me, you may just want to go over the settings one by one and try to look at it as if you were looking at a friend's machine that had a problem you wanted to figure out. Look at it new and you'll spot things.

Thanks for the ideas. I actually started trying to do this about a week ago. I put it aside for a few days, to get a fresh look at it.

Yeah, I can ping all machines from the router and vice versa. They are all getting valid IP addresses. The only thing that is not happening is that I can't get those internal machines out past that internal interface. They can't ping any domains (google and yahoo being the main ones I tried) or their IP addresses.

I just don't know what else to check. I have been over and over this on several different machines several times. I know it has to be some simple thing that I'm missing... I'm just not able to ascertain exactly what that is. It's quite frustrating. I do appreciate your help!

Thanks again. Any other thoughts?

I figured it out. I think I had something screwed up with the firewall. Anyway, for a great tutorial on setting this up, check this one out:

http://www.novell.com/coolsolutions/feature/11505.html