[H-GEN] can't get IP forwarding/NAT working on new install
Russell Stuart
russell-humbug at stuart.id.au
Mon Jun 5 18:10:34 EDT 2006
On Mon, 2006-06-05 at 23:41 +1000, Troy Piggins wrote:
> On previous installs this has been enough to get things going. To be honest,
> I've changed the network addresses between router and dapper from the previous
> install. They were 10.1.1.1 and 10.1.1.10 resp.
And it should be enough to get this going as well. My
guess is that Dapper has a default firewall in place.
Could you please run and post the results of:
sudo iptables-save
ip route show
ip rule show
cat /proc/sys/net/ipv4/ip_forward
> Read here http://ubuntuforums.org/showthread.php?t=91370&highlight=route
> that you should also install dnsmasq and ipmasq. Not too sure about that,
> since dnsmasq appears to be a DNS and DHCP server (for small/basic networks),
> and ipmasq seems to simply "take over" the firewall (iptables) rules table.
> I have already set that up as per above. (FTR I /have/ installed them, but
> don't think they are the problem. Wasn't working before I installed, still not
> working after).
As a general rule if you aren't using it make sure
it isn't being run. The easiest way to ensure that
is to uninstall it. There are two good reasons for
this. Firstly, every running daemon introduces more
complexity into an already complex system, and
secondly the less things you have running the less
potential vulnerabilities you expose.
That said, dnsmasq replaces two programs (bind and dhcpd)
and is much easier to configure then either of those.
Trying to get bind and dhcpd to work together the way
dnsmasq does out of the box can be a black art. If
dnsmasq meets your needs use it, and uninstall bind9
and dhcp.
More information about the General
mailing list