Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

problems getting adsl from LAN
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
Gentree
Watchman
Watchman


Joined: 01 Jul 2003
Posts: 5350
Location: France, Old Europe
PostPosted: Wed Mar 15, 2006 3:16 am    Post subject: problems getting adsl from LAN Reply with quote
Hi.

I have my main gentoo box with two nics. eth1 connects to adsl "modem" with rp-pppoe, eth0 to occassional guest machines I need to work on.

adsl is fine.

LAN is fine internally : I can ping all I like and can contact local machines with smbclient.

BUT , I now need to share my interent connection with a guest suse9 machine and I cant get further than the LAN.

I use dnsmasq on gentoo and the suse box is getting fed an IP by DHCP on gentoo.

It seems more basic than a dns problem since I cant even ping an IP from suse.

ie on gentoo
Code:
ping 134.76.11.100
PING 134.76.11.100 (134.76.11.100) 56(84) bytes of data.
64 bytes from 134.76.11.100: icmp_seq=1 ttl=53 time=697 ms
64 bytes from 134.76.11.100: icmp_seq=2 ttl=53 time=724 ms
64 bytes from 134.76.11.100: icmp_seq=3 ttl=53 time=751 ms


from suse I get 100% packages lost.

I disable the suse firewall to eliminate that getting in the way so I'm guessing its my rabit-penguin blocking me.

here's the std masquerading firewall which I thought should forward any locally originated connections due to the MASQ rule.



Code:

# Interface to Internet
EXTIF=ppp+

ANY=0.0.0.0/0

pchains -P input ACCEPT
ipchains -P output ACCEPT
ipchains -P forward DENY

ipchains -F forward
ipchains -F input
ipchains -F output

# Deny TCP and UDP packets to privileged ports
ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p udp -j DENY
ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p tcp -j DENY

# Deny TCP connection attempts
ipchains -A input -l -i $EXTIF -p tcp -y -j DENY

# Deny ICMP echo-requests
ipchains -A input -l -i $EXTIF -s $ANY echo-request -p icmp -j DENY

# Do masquerading
ipchains -A forward -j MASQ
echo 1 > /proc/sys/net/ipv4/ip_forward



could someone more familiar with this point me in the right direction please?

TIA , Gentree. 8)


[EDIT] BTW I have LAN on a different subnet and give susebox the gentoo box's NIC as gateway.
_________________
Linux, because I'd rather own a free OS than steal one that's not worth paying for.
Gentoo because I'm a masochist
AthlonXP-M on A7N8X. Portage ~x86
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy