i only have iptables, but, iptables is pretty much the same as ipchains,
check the documents for differences between iptables and ipchains, or get
iptables
//this will enable forwarding
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
//accept data from established outgoing connections
iptables -A INPUT -i eth0 -m state --state ESTABLISHED -j ACCEPT
where eth0 is the nic on your WAN
//masquerade will make your outgoing ip look like your global IP
iptables -t nat -A POSTROUTING -s 10.0.0.0/16 -j MASQUERADE
//this will enable forwarding for your subnet
iptables -A FORWARD -j ACCEPT -i eth1 -s 10.0.0.0/16
where eth1 is the nic on your LAN
Hope this helps or at least widens the picture.
"Karsten" <(E-Mail Removed)> wrote in message
news:coije5$1hkr$(E-Mail Removed)...
>I have a dsl router on 10.0.0.1
>
> I have attached a machine (RH6 kernel 2.2.5) with two nics to the router
>
> the nic that is attached to the router is 10.0.0.119
>
> the other nic goes into a soho switch and is called 10.0.2.1
>
> connected to the soho switch is machine (FC3) 10.0.2.119
>
> the RH6 machine with the two nics can ping anything
>
> the "last" machine FC3 10.0.2.119 can ping RH6 10.0.2.1 and nothing else
>
> What I need is ipchains to route packets from the Internet through RH6 to
> FC3
> i.e. from one subnet to the other
>
> router 10.0.0.1 -> switch -> 10.0.0.119 RH6 10.0.2.1 -> switch ->
> 10.0.2.119
>
> Can anybody help ? I sure hope this is the right and appropriate group ...
>
> :-) karsten at atservice dot com
>
>
>
>
|
Similar Threads
Linear Mode
