Hi all, I have a problem to get my Linux machine to masquerade for other computers on the network. My main machine is connect to the ADSL modem on eth0. The machine also has another network card, eth1 which connects directly to the other computer. Both machines can ping each other fine, but I can''t access the net from the other (Windows) system. IP Configuration on the linux machine: eth0 Link encap:Ethernet HWaddr 00:02:44:3B:2F:E5 inet addr:10.0.0.4 Bcast:10.255.255.255 Mask:255.0.0.0 inet6 addr: fe80::202:44ff:fe3b:2fe5/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:87684628 errors:753 dropped:61 overruns:740 frame:0 TX packets:110410730 errors:0 dropped:0 overruns:1 carrier:0 collisions:871739 txqueuelen:1000 RX bytes:772662737 (736.8 Mb) TX bytes:923273487 (880.5 Mb) Interrupt:10 Base address:0xf000 eth1 Link encap:Ethernet HWaddr 00:02:44:88:AB:7A inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0 inet6 addr: fe80::202:44ff:fe88:ab7a/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:1889570 errors:38 dropped:38 overruns:33 frame:0 TX packets:2399352 errors:0 dropped:0 overruns:40 carrier:0 collisions:0 txqueuelen:1000 RX bytes:243494865 (232.2 Mb) TX bytes:2193326581 (2091.7 Mb) Interrupt:11 Base address:0xe000 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:1621441 errors:0 dropped:0 overruns:0 frame:0 TX packets:1621441 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:155680345 (148.4 Mb) TX bytes:155680345 (148.4 Mb) ppp0 Link encap:Point-to-Point Protocol inet addr:80.126.106.1 P-t-P:195.190.249.7 Mask:255.255.255.255 UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1 RX packets:2215555 errors:0 dropped:0 overruns:0 frame:0 TX packets:2401763 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:3 RX bytes:1145447053 (1092.3 Mb) TX bytes:340031969 (324.2 Mb) Settings on the windows machine: IP address: 192.168.0.2 Netmask: 255.255.0 Default gateway: 192.168.0.1 As it has worked before, I fear I must be overlooking something obvious. Please see the attached output of "shorewall status". Can you please lend a hand? Sincerely, Remco Rijnders
Remco Rijnders schrieb:> Hi all, > > I have a problem to get my Linux machine to masquerade for other computers > on the network. My main machine is connect to the ADSL modem on eth0. The > machine also has another network card, eth1 which connects directly to the > other computer. Both machines can ping each other fine, but I can''t access > the net from the other (Windows) system.[...]> Settings on the windows machine: > > IP address: 192.168.0.2 > Netmask: 255.255.0^^^ This is a typo, isn''t it? (255.255.255.0)> Default gateway: 192.168.0.1 > > As it has worked before, I fear I must be overlooking something obvious.What''s in your /etc/shorewall/masq? At my site (similar config, but my eth0 is your eth1) ############################################################################### #INTERFACE SUBNET ADDRESS PROTO PORT(S) ppp0 eth0 #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE If that file is correct, what says "cat /proc/sys/net/ipv4/ip_forward"? There should be a "1" in that file, if your kernel is right configured.> Can you please lend a hand?HTH> Sincerely, > > Remco RijndersBest regards Jan -- OpenPGP Public-Key Fingerprint: EBCA 749F DE87 99B8 881E 79A3 698D 2541 BFDF 8591
2005/5/21, Remco Rijnders <remco@webconquest.com>:> > Hi all, > > I have a problem to get my Linux machine to masquerade for other computers > on the network. My main machine is connect to the ADSL modem on eth0. The > machine also has another network card, eth1 which connects directly to the > other computer. Both machines can ping each other fine, but I can''t access > the net from the other (Windows) system.> > Settings on the windows machine: > > IP address: 192.168.0.2 > Netmask: 255.255.0255.255.255.0> Default gateway: 192.168.0.1 > > As it has worked before, I fear I must be overlooking something obvious. > > Please see the attached output of "shorewall status". > > Can you please lend a hand? > > Sincerely, > > Remco Rijnders > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm > > >are you using debian ? set IP_FORWARDING=On in shorewall.conf make you sure your masq file looks like this: ppp0 eth1 and please,use a current version of shorewall. bye
On Sat, 21 May 2005 08:12:55 +0200, Jan Kohnert <nospam001-lists@jankoh.dyndns.org> wrote:> Remco Rijnders schrieb: >> Hi all, >> >> I have a problem to get my Linux machine to masquerade for other >> computers >> on the network. My main machine is connect to the ADSL modem on eth0. >> The >> machine also has another network card, eth1 which connects directly to >> the >> other computer. Both machines can ping each other fine, but I can''t >> access >> the net from the other (Windows) system. > > [...] > >> Settings on the windows machine: >> >> IP address: 192.168.0.2 >> Netmask: 255.255.0 > ^^^ > This is a typo, isn''t it? (255.255.255.0)Yes, sorry. Couldn''t cut-n-paste between the two machines :)> What''s in your /etc/shorewall/masq? > At my site (similar config, but my eth0 is your eth1) > ############################################################################### > #INTERFACE SUBNET ADDRESS PROTO PORT(S) > ppp0 eth0 > #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVEThat''s what I needed! I had "eth0 eth1" in there instead of "ppp+ eth1". Thanks a lot Jan & Cristian for your help! Remco -- Apathy Club meeting this friday. If you want to come, you''re not invited.