iptables don't work well

Ezechiel · n00b Joined: 23 Sep 2002 Posts: 26 Location: Austria

I have installed and configured everything right and everything work properly but after a restart of my Computer I must type these two lines in my console to connect my second Computer to the Internet ->

de4d · Posted: Mon Sep 23, 2002 1:28 pm Post subject:

write those lines to an ascii file, make it executable and link from /etc/rcX.d/SYnat to it (symbolic)
where X is your runlevel and Y is a 2 digit integer value

have phun
_________________
void main(){fork();main();}

klieber · Posted: Mon Sep 23, 2002 1:37 pm Post subject:

Naan Yaar · Bodhisattva Joined: 27 Jun 2002 Posts: 1549

BTW, the thread title is quite misleading. I would suggest changing it to something that matches its primary focus.

de4d · Posted: Mon Sep 23, 2002 1:55 pm Post subject:

Ezechiel · n00b Joined: 23 Sep 2002 Posts: 26 Location: Austria

thx for help I tried it with /etc/conf.d/local.start but it don't run.

I wrote the two lines in the same way I have posted above in the local.start but on the startup of the system come a Error Message about the iptables Command.

Naan Yaar · Bodhisattva Joined: 27 Jun 2002 Posts: 1549

Try giving the full path to iptables in your local script. Also, it would be helpful to post the actual error message.

Ezechiel · n00b Joined: 23 Sep 2002 Posts: 26 Location: Austria

I don't have written a Script. I just added the Commands in the local.start

Naan Yaar · Bodhisattva Joined: 27 Jun 2002 Posts: 1549

By script, I mean you local.start init script.

klieber · Posted: Mon Sep 23, 2002 4:14 pm Post subject:

What Naan Yaar is saying is that, instead of using this:

Ezechiel · n00b Joined: 23 Sep 2002 Posts: 26 Location: Austria

I tried it also with /sbin... but I get the same message:

klieber · Posted: Tue Sep 24, 2002 1:02 pm Post subject:

Naan Yaar · Bodhisattva Joined: 27 Jun 2002 Posts: 1549

I think your iptables command line is split across two lines (going by the xxx.xx... in your "command not found message). Edit your file using "nano -w" and make sure that you don't have a line break in the iptables command (and other) lines.

HogRider · Apprentice Joined: 29 May 2002 Posts: 160

Ezechiel,

Let's start at the beginning,
First, does this command function properly from the CLI? With an explicit path? (/sbin/iptables)
If so, are you certain you've duplicated it exactly in your /etc/conf.d/local.start? (the easiest way is [left mouse button] select & [center mouse button] paste)
Next, check you are using the same executatable (As root, "which iptables")

If all of these factors are true, post your local.start.

BTW, what are you trying to accomplish with iptables? You mention SNAT without any other rules. I generally call a dedicated script to institute a full lockdown, followed by selective reopening of ports & services, which gives you optimal protection.
_________________
Mike

"Computers are like air conditioners, they stop working properly if you open Windows"
perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'

Ezechiel · n00b Joined: 23 Sep 2002 Posts: 26 Location: Austria

The Problem was the Line Split :lol:

The IP Adress was in a different Line. Now everything works fine

thx for help @ll

Eagle-Eye · n00b Joined: 25 Sep 2002 Posts: 17

Another solution is to add iptables to your default runlevel and enable ip-forwarding in /etc/conf.d/iptables. Then you can save all currently set netfilter-rules in a configuration file using iptables-save. These rules will then be loaded when the system boots.

klieber · Posted: Wed Sep 25, 2002 8:29 pm Post subject:

static · Posted: Thu Sep 26, 2002 8:59 pm Post subject:

what do you mean? Doesn't

klieber · Posted: Thu Sep 26, 2002 9:06 pm Post subject: