Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I recently set up my SuSE box to act as a Gateway/firewall to provide internet access to my clients (WinXp).
The problem is that the clients can't access a few internet sites, and even stranger is that most (all?) the sites I can't access are all from the same hosting company (BOX.se) e.g. kosdivers.com, lonhult.com. What i mean is, that after I type in the adress and hit ENTER, nothing happens, it just says "Wating for ...xxxx.com...". I have tried both with Mozilla and Internet Explorer, and even stranger is that I can access the mentioned sites from the gateway/router without problem.
I read a similar thread just now and i tried (as they recommended) to disable the firewall (just using masq:ing), but it didn't solve anything.
Just using the MASQ:ing all I do is:
#!/bin/sh
IPTABLES=/sbin/iptables
#All The lines below are NAT routing
# flush any old rules
$IPTABLES -F -t nat
# turn on NAT (IP masquerading for outgoing packets)
$IPTABLES -A POSTROUTING -t nat -o ppp0 -j MASQUERADE
# enable IP forwarding (of incoming packets)
echo 1 > /proc/sys/net/ipv4/ip_forward
but like i said it still doesn't work.
Please let me know if you have any hints or ideas!!
My set up is:
SuSE 9.0, DSL connection (ppp0), and 3 NIC (only use 2 at the moment)
(another small problem (might be related): My connection seems to timeout after 15 minutes of inactivity eventhough I set the provider Idle_timeout to 0.
LCP terminated by peer
Setting MTU to 1492.
Couldn't increase MRU to 1500
Script /etc/ppp/ip-down finished
Hmm. weird things like this are hard to debug. Install something like ethereal on the gateway box and have it listen to all the traffic between you and one of those mystery sites. Is the request leaving your gateway properly? Is the site responding?
If its leaving and not coming back, it seems like its a problem with the remote site. If its not leaving, then you have weird problems with masquerading that I dont know how to debug if you're sure your firewall is completely disabled. If its leaving and coming back, then switch back to the inside network and see if you can catch the response returning to the PC that requested the site. If not, it may be that the site is mangling the packet in such a way that linux can't track down who had originally requested it.
Thanks a lot!
Will have a look a the traffic, thanks for the ethereal tip.
>>If its leaving and not coming back, it seems like its a problem with the remote site.
Seems weird, but like I said, since it applies to all sites of this (box.se) hosting, could be that it is not my fault (I wish.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.