Ok, total loss on internet sharing

[therobot]

I'm trying to set up internet connection sharing, and I'm at just a total loss here. I've been trying to piece it together with stuff from all over this forum, but I just can't figure it out.
Would someone be able to help me out at all, explaining how to do it? Or is there somewhere I can go to get a simple explanation?
Any help would be greatly appreciated.
thanks.

[delta407]

What "internet connection sharing", exactly? What is your connection to the outside world? Do you have a private subnet? Are you routed, NAT-ed, or proxied? Or don't you have anything set up?

More information, please.

[therobot]

sorry. My setup is: I have DSL coming in through eth1, which uses DHCP to get an IP address, and I have a cable going from eth0 to a windows 2000 computer. I'm just wanting to share my connection with the other computer.
I'm not totally sure how to get it set up....

[mksoft]

Place somewere in your startup:

[therobot]

ok, i tried that, but i get these errors when starting up:

[mb]

u have to recompile your kernel an add iptables support + needed modules like ftp... and full nat + masq

Networking options --->
IP: Netfilter Configuration --->


modprobe it before calling the script....


#mb

[therobot]

I already compiled my kernel that way...
what do i need to modprobe?

[fbleagh]

did u compile them as modules or builtin ?

[Rylan]

You said you have a "cable" going from eth0 to the win2000 box. Is this a crossover cable? You can't just plug cat 5 into two nic's, you need to have one end go into a hub/switch (unless it's a crossover cable).

My first step, were I you-- would be to give each computer a nic with a 192.168.0.x/24 address (the /24 means the first 3 fields' numbers are set in stone. /8 would mean the first field is the only constant 10.x.x.x). Then cable them together and see if they can ping each other. If so, that means both ethernet cards are working, and can talk to each other.

Then step two, which other people are helping you with, is getting iptables working right. Let me know how it goes.

[mb]

[therobot]

yes, it is a crossover cable, and they can ping each other.

[Al'Capone]

[hamletmun]

HOWTO - Make your Internet Connection Sharing to work

From ISP to GENTOO - (eth0:DHCP or STATIC IP)
From GENTOO to WINDOWS - (eth1:192.168.0.1)

1.
insmod your.nic.module (i.e. "insmod 3c59x") for both nics if differ

2.
if your ISP uses DHCP, "dhcpcd eth0"
if static, "ifconfig eth0 your.static.ip netmask 255.255.255.0 gateway your.isp.gateway"



Now is time to configure the connection sharing
this is just for kenels greater than 2.4.x with iptables

1.
insmod iptables_nat

2.
echo 1 >/proc/sys/net/ipv4/ip_forward

3.
iptables -F
iptables -t nat -F
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
(if your linux uses eth0 to connect your isp)

4.
In the Windows Machine:

192.168.0.1 in the gateway
numbers from your /etc/resolv.conf in DNS server

[sulu]

Fully ACK.

Thats exactly the same what i did and it works flawlessy.

[thegazer]

uhhmmm..
I can't find iptables_nat which option I have to enable/modulize on the kernel config to have this??

[thegazer]

oops my bad
got it solved
thanks!

[870Fragmaster]

how do I use the iptables init script? Where do you put the rules and what are the rules?

[WarMachine]

I use PPPoE, so the interface that I actually connect with is ppp0. Would I set

[sciack]

Hi all,

please help me as well. I got another situation.

192.168.0.1 my linux box with a speedtouch adsl (ip gotten through dhcp) on ppp0

192.168.0.20 winxp

192.168.0.30 win98
i have set them with gateway 192.168.0.1 i have enabled iptables with the forwarding but it still doesnt work at all. i cannot ping from my windows machines.

I have just a eth0 connected to a switch such as all the other windows machines.

help me!


_________________
the sciack

[cato`]

LinWall is a firewall using linux-2.4-kernels iptables. Iptables is a packet filter supporting the use of NAT. This way you will have full control of what you do with what packets while you in the same time have the possibility to share your internet-connection with your LAN. Of course you can run LinWall on a stand-alone machine, or a transparent firewall (with certain modifications). LinWall is perfect for home-users and small offices, both with static and dynamic IP.

Features
The newest release (v2.6) has the following features:

* NAT (sharing of internet-connection)
* Open/close UDP and TCP ports
* Port-forwarding UDP and TCP ports
* State-full inspection of packets (like in FTP)
* Support for many internal networks
* Protects against an attack towards certain Alcatel DSL-modems
* Nice for both dynamic and static connections

URL: http://www.linnet.no/firewall/

It's really simple, but you still need the iptables stuff in your kernel!

[Braempje]

[tgoodaire]

[HeadHolio]

[anil_et]

Hi All
Here I am in trouble
when I do