SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
After much reading, i learnt that you need to setup the adsl connection itself first, then a firewall or rule to forward to the rest of the computers in the LAN....
I got half of that working now. ADSL works on this linux machine... My problem is, i cant figure out how to let this box act as a gateway.
ADSL Setup
==============
After making sure i have all the files and kernel modules i need, i ran
adsl-setup
and entered everything, saved, and my adsl connection works like a charm.
However when it asked for "The firewall choice, at first i had it at "2 - MASQUERADE", but now i have it on "0 - NONE" (i assumed i dont need that firewall since i'll be using Jay's (firewall-jay.sourceforge.net)
If i run adsl-status i get this (incase this helps)
--------------------------------------------------------------------
adsl-status: Link is up and running on interface ppp0
ppp0 Link encap:Point-to-Point Protocol
inet addr:212.118.14.130 P-t-P:212.118.14.11 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1492 Metric:1
RX packets:3 errors:0 dropped:0 overruns:0 frame:0
TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:3
RX bytes:54 (54.0 b) TX bytes:54 (54.0 b)
----------------------------------------------------------------------
Firewall Setup
================
After installing Jay's firewall, and configuring it, i still had no hope. The configuration is a bit too large to put it here, so i uploaded it to a site in angelfire, if you want to see it, here it is http://www.angelfire.com/ok2/remember/firewall.config
I think i'm missing something, but i dont know what it is...
Layout and Info
=============
The adsl modem is connected to the switch, along with all the other computers
i connect to my modem through eth0
my gateway-to-be IP is 192.168.0.1
my other two machine's IPs are 192.168.0.2 and 192.168.0.7, both running XP (family...)
Kernel 2.4.22 (fresh install, will update to 23 or 24 when i fix this)
If i'm missing anything else, let me know.
Thanks alot guys, And If i did something wrong, or if there are better ways to do what im trying to do, please tell me.
When on the other machines,
i cant ping outside the LAN (eg, google.com, bbc.co.uk)
i cant surf the web, or update my antivirus
msn messenger 6.1 wont connect
I had a problem when I had a trial of AOL DSL.... seemed that for certain things I couldn't connect outside with... couldn't go to google.com couldn't go to certain other sites. When I used my xp machine for the gateway it worked fine. I'm guessing it was something to do with the slack machine and how I had the rp-pppoe set up though I'm not sure.
Xushi,
It looks fine to me (I am not an expert I have only done this once or twice), unless the ISP uses multiple gateways, or has different gateways for different blocks of IP addresses. You might call them to find out. They may have a machine name they want you to use instead of the IP address is what I am getting at.
Do you have a router? I tried pinging the IPs you listed but only your ISP gateway Did a DNS resolve. I also did went to www.samspade.org and tried the address and this is the result.
dns 212.118.14.130
212.118.14.130 has badly configured reverse DNS.
The reverse DNS for 212.118.14.130 is 130ip14.nets.com.jo, but 130ip14.nets.com.jo doesn't resolve to anything.
I would guess that the IP isn't registered yet. Your gateway resolves to 11ip14.nets.com.jo but rejects icmp. Perhaps your ISP blocks ping by default.
Your LAN should be able to ping your gateway. Unless the gateway isn't established on the XP boxes, or you listed 212.118.14.11 as the gateway instead of the 212.118.14.130.
Thanks jc2it, some of this does make a bit of sense..
nets is my ISP, located in jordan (.com.jo)
When going back to XP, and checking the network settings, i notice that it says:
Server IP Address: 212.118.14.11
Client IP Address: 212.118.14.30
So i'm assuming when you tried pinging, you somehow did it on my modem, instead of the DNS Server..
the two DNS (212.118.0.1 212.118.0.2) i put in the configs up there i got from /etc/hosts.conf (and afaik, they are correct).
No i don't have a router here, its just the adsl ethernet modem connected to one of the ports in a switch, while the rest of the computers are connected to the other ports. Any computer can dial into the modem and become the gateway (from that setup), but i always let this machine do it, whether on XP or Slack, and assign the rest of the boxes to connect through this machine being the gateway, and yes they can all ping/see it. they just cant see through it =/
Anyway i'll call my ISP tomorrow, and double check on the DNS and Gateway, and ill keep this post updated.
bah... i used his script instead of jay-firewall ... i get exactly the same thing. Its driving me nuts now, i dont know what i'm doing wrong...
Both machiens can ping eachother, i (the server) can connect to the adsl, but he (the client trying to connect through me) cant... worst of all, his windows messenger can only and only that... not msn messenger, not internet browsing, not even pinging anything outside the LAN!?!?!
here is a completely open firewall... if this doesn't get you going, then iptables isn't the problem. I strongly suggest you only use this for testing as it doesn't provide any protection.
edited...
---------------------------
sorry i got confused..
after searching, i realised i dont have /proc/.../ip_forward.
Anyway I created a script with the firewall above changing two lines to
echo "1" > /etc/rc.d/rc.ip_forward
ipt=/usr/sbin/iptables
ext=ppp0
executed it, but still nothing =/
---------------------------------
peter_robb, here's the output of iptables-save
# Generated by iptables-save v1.2.8 on Sat Jan 10 13:06:48 2004
*mangle
:PREROUTING ACCEPT [476:153732]
:INPUT ACCEPT [473:153562]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [443:62799]
:POSTROUTING ACCEPT [443:62799]
COMMIT
# Completed on Sat Jan 10 13:06:48 2004
# Generated by iptables-save v1.2.8 on Sat Jan 10 13:06:48 2004
*nat
:PREROUTING ACCEPT [34:2632]
:POSTROUTING ACCEPT [30:1801]
:OUTPUT ACCEPT [30:1801]
COMMIT
# Completed on Sat Jan 10 13:06:48 2004
# Generated by iptables-save v1.2.8 on Sat Jan 10 13:06:48 2004
*filter
:INPUT ACCEPT [33:2601]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [443:62799]
COMMIT
# Completed on Sat Jan 10 13:06:48 2004
Thanks, yes i typed iptables-save after the script, ill run it line by line soon, but i just want to ask something to make sure of it..
When setting up my ADSL connection with adsl-setup
when it asks me what firewall do i want to put and gives me 3 choices
0 - none
1 - single user
2 - masquerading.
Which one shall i choose for now? shall i put it on 2, or shall i choose 0 and work on the scripts i'm trying out (jay's, or the others)?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.