Re: Masquerading

Bernd Eckenfels (ecki@lina.inka.de)
Fri, 31 Dec 1999 12:37:04 +0100


In article <219A08643F7FD311A0270050DA0E84F0062556@atlas.inity.de> you wrote:
> masqueraded with the eth0 ip of the linux box.

> The start/stop script looks like this:

> START

> ipchains -N user_msq
> ipchains -A user_msq -s 0/0 -d 0/0 -j MASQ
> ipchains -A forward -s 192.168.100.0/24 -d 0/0 -i eth0 -j user_msq

add another rule which is targeted to your net behind the portmaster with -j
ACCEPT instead of masq:

ipchains -A forward -s 192.168.100.0/24 -d x.x.x.x/y -i eth0 -j ACCEPT
ipchains -A forward -s 192.168.100.0/24 -d 0/0 -i eth0 -j MASQ

Greetings
Bernd
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.rutgers.edu