From mike@boobaz.net Wed Mar 22 03:02:42 2000 Received: from mxu2.u.washington.edu (mxu2.u.washington.edu [140.142.32.9]) by lists.u.washington.edu (8.9.3+UW99.09/8.9.3+UW99.09) with ESMTP id DAA34892 for ; Wed, 22 Mar 2000 03:02:41 -0800 From: mike@boobaz.net Received: from boobaz.net (c1056043-a.sttln1.wa.home.com [24.19.193.36]) by mxu2.u.washington.edu (8.9.3+UW00.02/8.9.3+UW99.09) with ESMTP id DAA01077 for ; Wed, 22 Mar 2000 03:02:40 -0800 Received: from c1056043-a (c1056043-a [24.19.193.36]) by boobaz.net (8.9.3/8.9.3) with ESMTP id DAA24262 for ; Wed, 22 Mar 2000 03:02:40 -0800 Date: Wed, 22 Mar 2000 03:02:40 -0800 (PST) X-Sender: mike@c1056043-a.sttln1.wa.home.com To: UW Linux Group Subject: Re: new to linux In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Oh, ah yes. You should read the manual page for ipchains ('man ipchains'). You should also read the ipchains-HOWTO: http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html and the Masquerading HOWTO: http://www.linuxdoc.org/HOWTO/IP-Masquerade-HOWTO.html Notably, to answer your question, you can examine your current ipchains ruleset by executing: ipchains -L -n --------------------------- -=<(| mike@boobaz.net |)>=- On Wed, 22 Mar 2000, C. Mills wrote: |I installed redhat linux 6.1 on an old p100 yesterday. I am using it as |a ip masquerade server or whatever the proper name is. Anyway, the |computer has eth0(static ip from AT&T) connecting to the internet and |eth1(192.168.0.1) connecting to the LAN. Right now there is only a WinNT |4.0 box on the LAN. It cannot access the internet. The ip masquerade |server can, hence this email. |The ip masq box is using the gateway given by AT&T. The WinNT |(192.168.0.2) box has 192.168.0.1 the address of eth1 on ip masq box set |as its default gateway. |So far the relivent commands that I ran on the ip masq box are: |/sbin/depmod -a |/sbin/modprobe ip_masq_ftp |/sbin/modprobe ip_masq_raudio |/sbin/modprobe ip_masq_irc |ech0 "1" > /proc/sys/net/ipv4/ip_forward |/sbin/ipchains -M -S 7200 10 160 |/sbin/ipchains -P forward DENY |/sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ |# all without any reported errors # |I think the firewall part of the ip masq box is blocking information |coming into the LAN. According to the lights on the LAN hub and the cable |modem it seems like requests from WinNT box are going out. I cannot find |the file /etc/rc.d/rc.firewall or any file that looks like it contains |firewall ruleset. |So far I have been blindly following other peoples directions. Am I |making any major mistakes and how come I cannot find the file containing |the firewall ruleset? When I do find the firewall ruleset what do I do |with it? | .