l i n u x - u s e r s - g r o u p - o f - d a v i s
Next Meeting:
July 7: Social gathering
Next Installfest:
Latest News:
Jun. 14: June LUGOD meeting cancelled
Page last updated:
2001 Dec 30 17:10

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox-tech] iptables hates me
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] iptables hates me

--- Nick Donnelly <nick_donnelly@diagence.com> wrote:
> I can't  get iptables to masq squat. I've got rp-pppoe on eth0 and eth1 is
> my internal net.  I have tried four firewall/masqing scripts and the same
> result with all:  my LAN host can ping the eth1 on the masq box, and the
> masq box can ping both eth1, and ppp0, but the LAN hosts can't ping any
> internet address.  Everything seems to be in order, I even tried this
> rule (only):
> iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE


iptables -t nat -A POSTROUTING -o ppp0 -j SNAT --to-source external.ip.addy.xxx

All the masquerading that was present in ipchains has been 'tweaked' to NAT. 
If you're modifying the sender, use SNAT.  If you're modifying the destination,
use DNAT.



Terrorist Attacks on U.S. - How can you help?
Donate cash, emergency relief information

LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
O'Reilly and Associates
For numerous book donations.