On Wed, 14 Nov 2001, BobH wrote:
> Still trying to get NAT going. Upgraded to 2.4.9-13 and had an unuseable
> kernel. I started from scratch on the configuration but have since found
> the 'configs' subdirectory under the 2.4.9-13 src directory. Should I just
> open the appropriate config file and use this as my base to add the items
> for NAT?
The items for NAT are included in that kernel, already. If it doesn't
work for you, and you're upgrading from ipchains to iptables/netfilter,
then you should beware that NAT is done "post-routing". That is, setting
your "forward" policy to "DENY" and adding rules for MASQ was OK under
ipchains, but won't work under iptables. For iptables, if you set the
forward policy to "DENY", then you must add rules in the forward table to
allow routing for the host you want to masquerade *and* a rule to the nat
table to masquerade them.
--
If I had a dollar for every brain that you don't have,
I'd have one dollar. - Squidward to SpongeBob
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
