Please Help!
jose sanchez
j_r_sanchez at yahoo.com
Sun Jul 14 04:46:10 CDT 2002
Hello:
Please help me on this:
I just playing with iptables today and experienced
some problems...
This is the scenario:
The linux router has
eth0 is on 192.168.1.0/24 network, ip 192.168.1.1
eth1 is on 192.168.2.0/24 network, ip 192.168.2.1
Ip_forward is turned on.
Is a fresh install running RH 7.2
I have a computer with IP 192.168.1.100 trying to ping
to a computer with IP 192.168.2.8 but can't get it to
work. The computer on *.*.2.8 is a webserver.
These are the rules I have set up:
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
iptabels -F
iptables -A FORWARD -p icmp -j ACCEPT
iptables -A INPUT -p icmp -j ACCEPT
iptables -A OUTPUT -p icmp -j ACCEPT
iptables -A FORWARD -i eth0 -o eth1
-s 192.168.1.0/24 --sport 1024:65535
-d 192.168.2.8 --dport 80
-m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth1 -o eth0
-s 192.168.2.0/24 -d 192.168.1.0/24
-m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
I can't ping any of the router's cards nor can't ping
to the other network.
When I rmmod all the iptables modules I could ping
192.168.2.8 from 192.168.1.100, the router routes the
packets but why I can't ping when the iptables modules
are loaded? Do I need to recompile the kernel?
Thanks in advance for all your help.
=====
"An ounce of gold cannot buy an ounce of time."
- Anonymous
www.whmicro.com
__________________________________________________
Do You Yahoo!?
Yahoo! Autos - Get free new car price quotes
http://autos.yahoo.com
More information about the Kclug
mailing list