Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
06-26-2001, 11:23 AM
|
#1
|
|
Member
Registered: May 2001
Posts: 125
Rep: 
|
setting up IP Masquerade for linux router
I currently have a cable modem that is shared among several roomates. I also have a linux box that does samba and a bunch of other stuff on the local network. i want to set up a router with linux to share the cable modem. We currently use win2k on the router with internet connection sharing. this works, but i am looking for a better solution.
i have set up and used freesco, but the ip masquerade doesn't allow for certian things that work with win2k nat. for example, age of empires 2 will not work with freesco, but will work with win2k nat.
Is there a way that i can set up ip masquerade to allow most connections, even weird ones like age of empires, and most other games, and still secure the internal network. win2k seems to work fine for this, but i am sure there is a better solution for linux. thanx for the help.
|
|
|
|
|
06-26-2001, 03:19 PM
|
#2
|
|
Member
Registered: Feb 2001
Location: Texas
Distribution: Slackware, Mandrake, LFS
Posts: 306
Rep:
|
You have run into the problem that most gamers/masqueraders hit at one point or another. The issue is that games like AOE sometimes use Random(but predictable) ports in a certain range. Since your kernel cannot magically find these ports, or realize that it's a game not an intruder it doesn't like them. There are many sites on the net that show you how to enable certain ports. If your truly using ipchains I'd suggest:
www.tsmservices.com/masq/
It's still updated, but with iptables being the big boy on the block it's a bit obsolete. Good luck.
J |
|
|
|
|
06-26-2001, 03:22 PM
|
#3
|
|
Senior Member
Registered: May 2001
Location: Bristol, UK
Distribution: Slackware, Fedora, RHES
Posts: 2,243
Rep:
|
Setting up IP Masquerading is very straight forward... Have a look at http://www.linuxdoc.org/HOWTO/IP-Masquerade-HOWTO.html and http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html (assuming you are on 2.2.).
Once the cable modem is setup on the linux box (a different story, search the forum!) it basically boils downto
Code:
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 192.168.1.0/24 -j MASQ
This assumes you are using 192.168.1.x as you IP addresses. You then just set your linux box as the default gateway for your other machines and its job done.
Most things work for me, and there are a lot of additional modules to help when things don't.
HTH
Jamie... |
|
|
|
|
06-26-2001, 05:42 PM
|
#4
|
|
Member
Registered: May 2001
Posts: 125
Original Poster
Rep:
|
how does win2k masquarading know those. is there a way to allow most incoming connections by default. i am more worried about everything working then security
|
|
|
|
All times are GMT -5. The time now is 01:08 AM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
