Re: [SNF] Re: [Cooker] Re: [SNF] SNF in 8.2 cooker.

Florin Fri, 08 Mar 2002 00:42:34 -0800

Randy Welch <[EMAIL PROTECTED]> writes:

> >>I suspect I didnt' do someting quite right then...  ( eth0 is LAN for me
> >>and eth1 is WAN ).
> >>
> > any masquerade setup ?
> 
> Yep.  Here is my masq file:


> #interface      subnet  address
> eth0:0.0.0.0/0  192.168.200.1/24
> #LAST LINE - ADD YOUR ENTRIES ABOVE THIS ONE - DO NOT REMOVE

your line should be like the following :

_e_t_h_1:0.0.0.0/0  192.168.200._0/24

note here the TWO modifications to your file :

1. the interface is the WAN interface. In the masquerade field you specify
the interface THROUGH WICH the traffic is masqueraded and not from wich
interface this should be masqueraded.

That means, in a way, that all the traffic out through eth1 (your WAN
interface) and comming from the 192.168.200.0/24 network will appear as
from the firewall because you're using private IP addresses for your lan
and, say a public web server, doesn't know your private address. It
responds therefore to your firewall and then the firewall will resend the
information back to the pc that required that information in the first
place.

2. the network address is 192.168.200.0/24, a C class network that allows
   you to use 255 IP addresses from 192.168.200.1 to 192.168.200.255

hope this helps,
-- 
Florin                  http://www.mandrakesoft.com

Re: [SNF] Re: [Cooker] Re: [SNF] SNF in 8.2 cooker.

Reply via email to