IP chains/MASQ Guru's needed

G ZM (maccer98_@yahoo.com)
Thu, 22 Apr 1999 07:17:33 -0700 (PDT)


MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii

Hi all

I have a SUSE linux box running 2.2.6 with ipchains/MASQ running. I
have within /etc/rc.config
in the Firewall & Masqeurading sections the proper items (all are not
included below)
FW_START="yes"
FW_LOCALNETS="192.168.0.0/24 24.112.x.x "
FW_INT_DEV="eth1"
FW_WORLD_DEV="eth0"
FW_ROUTER=""
FW_FRIENDS="yes"
FW_INOUT="yes"
MSQ_START="yes"
MSQ_NETWORKS="192.168.0.0/24"
MSQ_DEV="eth0"
MSQ_MODULES="ip_masq_cuseeme ip_masq_ftp etc"
******************************************************
and /etc/fw-friends contains the said reserved class C clients:
192.168.0.1
192.168.0.2
192.168.0.3
/sbin/init.d/masquerade status
returns:
IP masquerading entries
ipchains -L returns:
Chain input (policy ACCEPT):
Chain forward (policy ACCEPT):
target prot opt source destination ports
user_msq all --- 192.168.0.0/24 anywhere n/a
Chain output (policy ACCEPT):
Chain user_msq (1 references):
target prot opt source destination ports
MASQ all ------ anywhere anywhere n/a
*******************************************************
On internal network with Linux box with two NICs that show via
ifconfig:

lo Link encap:Local Loopback
inet addr:127.0.0.1 Bcast:0.0.0.0 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:3924 Metric:1
RX packets:8040 errors:65 dropped:0 overruns:0
TX packets:0 errors:0 dropped:0 overruns:8040

dummy Link encap:10Mbps Ethernet HWaddr 00:00:00:00:00:00
inet addr:24.112.x.x Bcast:24.112.43.255 Mask:255.255.252.0
UP BROADCAST RUNNING NOARP MTU:1500 Metric:
RX packets:0 errors:0 dropped:0 overruns:0
TX packets:0 errors:0 dropped:0 overruns:0

eth0 Link encap:10Mbps Ethernet HWaddr
00:80:C8:E6:52:59
inet addr:24.112.x.x Bcast:24.112.43.255 Mask:255.255.252.0
00:80:C8:E6:52:59
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:22484 dropped:0 overruns:0
TX packets:4 errors:0 dropped:0 overruns:55550
Interrupt:9 Base address:0xd000

eth1 Link encap:10Mbps Ethernet HWaddr 00:80:C8:E6:38:70
inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0
TX packets:0 errors:0 dropped:0 overruns:540
Interrupt:3 Base address:0xb800
*******************************************************
Finally route -n returns:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
24.112.x.x 0.0.0.0 255.255.255.255 UH 0 0 0 dummy
192.168.0.0 " " 255.255.255.0 U 0 0 0 eth1
24.112.x.0 " " 255.255.252.0 U 0 0 0 eth0
24.112.x.0 " " " " " " U 0 0 0 dummy
24.112.x.0 " " " " " " U 0 0 0 eth0
127.0.0.1 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 24.112.x.1 0.0.0.0 UG 0 0 0 eth0

I cant see why one cannot ping an internal client
(e.g. win95 with TCP IP set as 192.168.0.2/255.255.255.0 and gateway as
192.168.0.0/192.168.0.1 or gateways set singularly), or ping from
client to linux box.
This on on baseT ethernet and hub/cables work under NT.
Any recommendations and/or ideas as to what is causing this problem
would be greatly appreciated.
Thanx for your time
Mac
maccer98_@yahoo.com

_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.rutgers.edu