I had a look at my ip_forward and the first line is exactly the sameas
yours....ie default 0, which I assume is to deny by default, and use the
following rules as exceptions....and I have had no problem with
mine...Redhat 5.0.
Let me know if I can help futher..
Rossco
At 10:11 AM 5/18/98 +1000, you wrote:
>Hello
>
>Approximatly 1 week ago, I posted a message regarding an possible
IP_forwarding
>bug/problem and we've had limited success in resolving it.
>
>In summary, we had (note had) a RH 5.0 box as a gateway/firewall for a
private
>subnet (192.168.1.x) and a public subnet off two ethernet cards, and then
a ppp
>link to the 'Net.
>
>We had problems with 5.0 forwarding packets on so we reverted back to 4.1
with
>kernel 2.0.27 (out of the box with IP-forwarding compiled in).
>
>That was working like a gem until a few days ago, when for no apparent
reason,
>the forwarding stopped.
>
>As an example, if we ping'd from our facilities to a machine off eth0
(public
>subnet) it would find its
>way through to the gateway machine/ppp interface, but stall there.
>
>Now, this is what proc says:
>
>
>[root@gateway net]# cat /proc/net/ip_forward
>IP firewall forward rules, default 0
>..
>..
>..
>..
>..
>
>The ..'s are forwarding rules for the firewall.
>
>That default 0 to me says that ip_fowarding is turned off.
>
>[root@gateway net]# cat /proc/ksyms |grep ip_forward
>00147c40 ip_forward_Rb2273aca
>
>That line says that ip-forwarding is in the kernel.
>
>We've tried things like echo "1" >/proc/net/ip_forward but that"default 0"
wont
>change.
>
>My understanding is that that default line should read 1 or 4 ?
>
>No configuration was changed or or around last friday when this thing bit
the
>dust and with a large client suffering the demise of no net connectivity,
(mail
>server is off on the public network which isnt reachable!), we are
desparate to
>get this repaired.
>
>Does anyone have any ideas WHAT could be the problem?
>
>The firewalling only touches eth1 which is the private network so thats not
>able to conflict.
>
>Id be happy to give more information to anyone who asks.
>
>If anyone has _any_ suggestions, I'd be greatly appreciative.
>
>Thanks in advance.
>
>Regards
>
>Adam
>
>--------------------------------------------------
> IPAX Systems
> Melbourne, Australia
> National Systems Manager
> Ops Tel: 03 - 9887-1984
> Ops Fax: 03 - 9801-8533
> Web Site http://www.ipax.com.au
>--------------------------------------------------
>
>
>--
> PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
>http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
> To unsubscribe: mail [EMAIL PROTECTED] with
> "unsubscribe" as the Subject.
>
>
>
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
