internet sharing

Hi there! I have 2 pcs in my house. The first has linux os and the second w98.
How can i share the internet connection of the linux pc so w98 can surf the internet?
Thanx
Alex

Yes. This questions has been asked many times on this forum (even once by myself). Please search for existing threads before you start a new one.

If you REALLY can't find anytthing you need to read about how to set up IP Masquerading, NAT, or Proxy.

~Andrew

Manual Setup for RedHat or Mandrake

Edit the file /etc/sysctl.conf and on the line net.ipv4.ip_forward = 0, change 0 to 1.

Code:

# Controls IP packet forwarding
net.ipv4.ip_forward = 1

In order for the changes to take effect,
at the command line, type: service network restart

Now you need to setup IP forwarding and Masquerading.
First, you need to flush the old rules.
So open a console window and at the command line, type:

Code:

service iptables stop
service iptables save

The following commands will create new rules for your system.

Code:

iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP

iptables -A FORWARD -i eth0 -o eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

NOTE: In this case, eth0 connects to the internet and eth1 connects to the local network.
You may need to switch eth0 and eth1.
The ifconfig command will give you more information.

To save iptables modifications, at the command line, type: service iptables save.
IPtable rules are located in the /etc/sysconfig/iptables file.

Don't forget to start iptables: service iptables start

also, remember to set the default gateway of the windows box to the lan ip of the linux box.

I have suse 8.1 but there is no /etc/sysctl.conf .. I must create a new one?

No. My previous post is only for RedHat or Mandrake.

For SuSE, you can do the following:

Create a file in the /etc/rc.d directory called rc.firewall and add the following to it.

Code:

#!/bin/bash
IPTABLES=/sbin/iptables

echo 1 > /proc/sys/net/ipv4/ip_forward

$IPTABLES -P INPUT ACCEPT
$IPTABLES -F INPUT
$IPTABLES -P OUTPUT ACCEPT
$IPTABLES -F OUTPUT
$IPTABLES -P FORWARD DROP
$IPTABLES -F FORWARD
$IPTABLES -t nat -F

$IPTABLES -A FORWARD -i eth0 -o eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT
$IPTABLES -A FORWARD -i eth1 -o eth0 -j ACCEPT

$IPTABLES -t nat -A POSTROUTING -o eth0 -j MASQUERADE

NOTE: In this case, eth0 connects to the internet and eth1 connects to the local network. You may need to switch eth0 and eth1.
The ifconfig command will give you more information.

Don't forget to change the permissions of rc.firewall

Code:

chmod 700 /etc/rc.d/rc.firewall

And, of course, you will have to append the following line to /etc/rc.d/boot.local
If you can't find the boot.local file, look for /etc/rc.d/rc.local

Code:

/etc/rc.d/rc.firewall

Thnx a lot!!
This is the only thing that i must do? Great.
Do u know how i must setup w98?
Where i can find a place with documentation for internet sharing?

Well... no...

Is the Linux PC (which has the Internet connection) able to connect to the internet ?
Did you configure the second network card ?

Assuming that the second network card is 192.168.1.1
On win98, go to Control Panel and click on Network.
Select TCP/IP and click on Properties.
- Set the IP address (192.168.1.2) and the Subnet Mask (255.255.255.0).
- In the Gateway tab, add the IP of the Linux PC (192.168.1.1)
- In the DNS tab, add the DNS IPs from your internet provider. You can get these IPs on Linux by looking in /etc/resolv.conf

Give the following three commands

iptables -t nat -F POSTROUTIG
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
echo "1">/proc/sys/net/ipv4/ip_forward

For an excellent rundown on setting up internet sharing find teh IP-Masquerading-HowTo at www.tldp.org. Most of the rules that Mathieu gave you probably came from here. They look very similar.

Good luck.
p.n

Ok, but what if I have a modem to connect to internet, and the eth0 is connected to the local network?, Everything else is the same, the linux box (redhat9) is the one that connects to the internet.
Thanks, any help will be apreciated.

But how about linux to linux.
I have an Dell Laptop which was running redhat linux 9.0 which equipped with an MiniPci modem which i can't get it to work. and I have a desktop which i could use redhatlinux 9.0 to dialup the internet.
SO, do i do the same thing as you state.
eth1 was my desktop's second lan(192.168.0.231) and all my pc was connected to a 10t hub.
I did
net.ipv4.ip_forward = 1 in /etc/sysctl.conf
services network restart
services iptables stop
service iptables save
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP

iptables -A FORWARD -i ppp0 -o eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth1 -o ppp0 -j ACCEPT

iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
services iptables save
services iptables start

What do i need to do on my laptop?
I did configure my 3com lan(192.168.0.123) and i can ping 192.168.0.231 which was my desktop's ip and i did set my laptop's default gateway address to 192.168.0.231.
But when i open up my mozilla browser, trying to go to www.google.com. It says "www.google.com could not be found. Please check the name and try again."
Do know what's wrong or did i do it right?

revoloco: Take a look at tricky_linux's set up.

tricky_linux:
Did you add your DNS IPs to /etc/resolv.conf ?
- Copy the contents of /etc/resolv.conf from the desktop to the laptop.
- Restart your Network service.
Are you now able to ping an external IP address (216.239.39.100) and a domain (google.ca) ?

Also, in your setup, you mentioned eth1. Are you sure it is eth1 and not eth0 ?

to Mathieu~
I didn't do anythings about file "/etc/resolv.conf"
Missed somepart.
anyway, i am sure of the port my local net used was eth1.
Because i have an ASUS A7N8X Deluxe mobo and redhatlinux 9.0 doesn't support onbaord NVIDIA's ethenet card. So, i had compile the source myself . Then eth1 appears which was using nvnet. SO i know that must be.
I can ping locally, but not internet from my laptop.
But i will do the part which i missed and the content was
"Don't forget to change the permissions of rc.firewall

code:chmod 700 /etc/rc.d/rc.firewall



And, of course, you will have to append the following line to /etc/rc.d/rc.local

code:/etc/rc.d/rc.firewall"

And for my laptop wich can't get access to internet through modem, what do i need to do for it? Do i only need to just set the IP address?

I will try what you had said and see it works or not.

Yes, do the modifications to /etc/resolv.conf

And

Since you are using RedHat 9.0, follow the steps in the post entitled Manual Setup for RedHat or Mandrake (the third post).

The post concerning rc.firewall is for other Linux distribution.