On Sun, 29 Oct 2000, Nick wrote:
> Also, did you managed to set up this routing arrangements whereby other
> computers (whether Windows or Linux) could conect to the Internet via the
> Linux box that is physically connected to the ISDN modem?
If I understand your setup correctly, you would probably want to throw
another NIC into the linux box connected to the internet and set it up
as eth1, with a private address like 192.168.1.1 netmask
255.255.255.0. Make sure that you assign similar addresses in that
block to the other computers on your internal network, setting the
linux box's eth1 address up as their default gateway. (Note: you might
also try setting up a dhcp server on your linux gateway box, providing
addresses only to boxes on eth1's network, 192.168.1.0/24)
Then you want to turn on forwarding on that box:
echo 1 > /proc/sys/net/ipv4/ip_forward
Make it permanent by editing /etc/sysctl.conf to look like this:
# Enables packet forwarding
net.ipv4.ip_forward = 1
# Enables source route verification
net.ipv4.conf.all.rp_filter = 1
# Enables automatic defragmentation (needed for masquerading, LVS)
net.ipv4.ip_always_defrag = 1
Or if you're running rh6.1/older you will need to edit
/etc/sysconfig/network instead, adding a line:
FORWARD_IPV4=true
and adding this to maybe /etc/rc.d/rc.local:
for f in /proc/sys/net/ipv4/conf/*/rp_filter; do echo 1 > $f; done
In both cases, you will also need to add a masq'ing rule to the linux
box indicating that it should forward all traffic from the
"internal" network on eth1:
ipchains -I forward -s your.internal.net.work -d 0/0 -j MASQ
Finally, check these howto's for more information cuz I probably forgot
something along the lines:
http://netfilter.kernelnotes.org/ipchains/HOWTO.html
http://www.linuxdocs.org/IP-Masquerade-HOWTO.html
Hope that's helpful.
--
Tony Inskeep
Pfeiffer University
704.463.1360 x2172
------------------
Ashamed of what is not a matter for shame, and not ashamed of what is,
by holding to wrong views people go to a bad rebirth. 316
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
