[H-GEN] ip masq progressing one prob remains

Michael Anthon mca at tams.com.au
Thu Sep 30 02:17:04 EDT 1999


[ Humbug *General* list - semi-serious discussions about Humbug and
Unix-related topics. ]

> /sbin/ipchains -P forward DENY
> /sbin/ipchains -A forward -j MASQ -s 192.168.0.0/24 -d 0.0.0.0/0

This basically says set the default forwarding policy to deny, then add a
rule to the forwarding chain to masquerade everything from 192.168.0.x and
allow them to connect to anywhere on any port.  As far as I can see, this
should allow HTTP traffic.

You might like to add a -l to the forwarding rule, this will cause it to log
all packets into your system log and you can see a bit more of what is going
on.  Perhaps your ISP is blocking port 80 to force you to use a proxy ?

Also, perhaps posting the output of "ipchains -L -n" to the list may help us
see a bit more of what your rules end up being.

Cheers
Michael Anthon

--
This is list (humbug) general handled by majordomo at lists.humbug.org.au .
Postings only from subscribed addresses of lists general or general-post.



More information about the General mailing list