LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 12-01-2004, 03:08 AM   #1
dannie
LQ Newbie
 
Registered: Dec 2004
Posts: 2

Rep: Reputation: 0
Internet gateway on FC3 -Do i need iptables ?


Its been a week - I am almost ready to give up ! Please help

I have eth0 connected to a dsl modem 192.168.10.1
i have eth1 connected to a lan 10.10.10.10

i have ras-pppoe (roaringpenguin) installed - it is set to masquarade

i have ip forwarding enabled. echo 1 > /proc/sys/net/ipv4/ip_forward =1


Destination Gateway Genmask Flags Metric Ref Use Iface
rndf-56-01.telk * 255.255.255.255 UH 0 0 0 ppp0
10.10.10.0 * 255.255.255.0 U 0 0 0 eth1
192.168.10.0 * 255.255.255.0 U 0 0 0 eth0
169.254.0.0 * 255.255.0.0 U 0 0 0 eth1
default rndf-56-01.telk 0.0.0.0 UG 0 0 0 ppp0

I have tried 2 methods to enable internet sharing (gateway)
a) have iptables do masquarading - with pppoe.conf also set to masquarade
b) with iptables stopped

in both cases
PING 196.14.162.50 (196.14.162.50) from 10.10.10.10 eth1: 56(84) bytes of data.
From 10.10.10.10 icmp_seq=1 Destination Host Unreachable
From 10.10.10.10 icmp_seq=2 Destination Host Unreachable

either forwarding or masquarading does not work !

i van only ping to the internet from ppp0 !

Both eth0 and eth1 all fail.

Here is the confusion !
Do i need to have iptables running and masquarading setup ?
or
should masquarading in pppoe.conf be sufficient ?
# Firewalling: One of NONE, STANDALONE or MASQUERADE
FIREWALL=MASQUERADE

please help i am almost ready to look at windows....
 
Old 12-05-2004, 03:02 AM   #2
musicman_ace
Senior Member
 
Registered: May 2001
Location: Indiana
Distribution: Gentoo, Debian, RHEL, Slack
Posts: 1,555

Rep: Reputation: 46
Both IP addresses you posted are Private Network Address.

ETH0 should be picking up a different IP if it is connected to a DSL modem.
ETH1 should be set to the private address of x.x.x.1

You've got me wondering which address scheme you want to work with. If this is for a home network, the 192.168.x.x should have plenty of IP for you, If this is for a business, I'd recommend the 10.x.x.x

Decide which you want to play with.
Find out the ISP's nameserver IP
If you've set those IPs up manually, change ETH0 to dhcp

Last edited by musicman_ace; 12-05-2004 at 03:06 AM.
 
Old 12-05-2004, 04:29 AM   #3
Butt-Ugly
Member
 
Registered: Nov 2004
Location: Brisbane, Australia
Distribution: Fedora Core 5
Posts: 89

Rep: Reputation: 15
Dannie,

Im currently writing a Linux Home Server HOWTO which addresses these issues, and is aimed at the newer Linux user.

The document is still being written but the broadband (dsl/pppoe) and firewall/masquerading has reached first draft. There is also an example firewall script for you.

It would probably help us both if you could check it out.

Cheers,

BU.

Last edited by Butt-Ugly; 12-05-2004 at 05:38 AM.
 
Old 12-08-2004, 02:25 PM   #4
dannie
LQ Newbie
 
Registered: Dec 2004
Posts: 2

Original Poster
Rep: Reputation: 0
Thank you for replying musicman.

Yes i have 192.x.x.x on the dsl end and 10.x.x.x on the "internal end.

when i initiate a PPOE connection using rasppoe i do get a legal address assigned by my isp. Dns resolution is also working, the legal address i get via dhcp is below but it is unfortunately already resloved to a hostname.

In this case it was rndf-56-01.telkomsa.net

rndf-56-01.telk * 255.255.255.255 UH 0 0 0 ppp0

Do you think it will make a difference if eth0 is set to dhcp from the word go ?

surely if i get my dhcp from the isp and i can browse from the box that bit is ok ?

Thank you again for your help.. i will se if it makes a difference.

regards
dannie
 
Old 12-08-2004, 03:47 PM   #5
musicman_ace
Senior Member
 
Registered: May 2001
Location: Indiana
Distribution: Gentoo, Debian, RHEL, Slack
Posts: 1,555

Rep: Reputation: 46
Do you think it will make a difference if eth0 is set to dhcp from the word go ?

That would be my thought. Also verify that resolv.conf is populated with their servers
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Home gateway + iptables kurrupt Linux - Security 2 08-08-2005 08:48 AM
Linux gateway with iptables - Everybody help me, please b:z Linux - Networking 14 03-31-2005 06:01 AM
Linux gateway with iptables - Everybody help me, please b:z Linux - Security 1 03-30-2005 07:58 PM
iptables rules on gateway alon005 Linux - Security 7 10-05-2004 08:37 PM
internet gateway problems (iptables configuration) woranl Linux - Networking 11 08-28-2003 12:41 AM


All times are GMT -5. The time now is 03:39 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration