Luis Gustavo Madrigal Salazar <[EMAIL PROTECTED]> writes:
> I'm trying to install a NAT server in my box and I'm using ipchains 1.3.9
> I want the private netwrok 192.168.1.0/24 to be able to get to the
> internet using my linux box as a gateway.
Ok.
> The L:inux only has one network interface (so I set up an alias
> using: ifconfig eth0:0 192.168.1.1)
This is the gateway? I don't know what you want to do with the
alias. The gateway needs (at least) two network interfaces: one
connected to the internet and one connected to your private
network. Why the alias? If you assign aliases to a network
interface...it isn't connected to more networks.
> my input chain is using ACCEPT as the default policy and no rules.
> the output chain's policy is ACCEPT, no rules.
> the forward chains's policy is DENY and it has one rule:
> MASQ all protocols source 192.68.1.0/24 destination 0.0.0.0/0 ports n/a
^ typo?
> the Linux box responds when I ping it from a client (ping 192.168.1.1)
> and also the Linux can reach all the clients.
Ok.
> But the clients can get out to the internet!.
I guess here is a 'not' missing. ;)
Do the clients have the default gateway set to your gateway?
moritz
--
Moritz Schulte <[EMAIL PROTECTED]> http://hp9001.fh-bielefeld.de/~moritz/
Debian/GNU supporter - http://www.debian.org/ http://www.gnu.org
GPG fingerprint = 3A14 3923 15BE FD57 FC06 B501 0841 2D7B 6F98 4199
