how do I set up ip masquerading?

ignarus · Posted: Wed Apr 09, 2003 1:11 pm Post subject: how do I set up ip masquerading?

Hi

I'm trying to set up a router on my gentoo box. I have two NICs: eth0 for the external ip (dhcp address from isp) and eth1 pointing to the internal network with ip 10.0.0.1.

I tried to test basic routing by executing "iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE"

When I tried to connect with a client pc (running win2k) to the internet, it didn't work. The client is set up to use the router as it's gateway.

Is there something else I need to do to get ip masquerading working?
Do I need to add an extra route or something?

My routing table looks like this:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10-67-88-0.kotn * 255.255.248.0 U 0 0 0 eth0
10.0.0.0 * 255.0.0.0 U 0 0 0 eth1
default 10-67-95-254.ko 0.0.0.0 UG 0 0 0 eth0

Thnx

nephros · Posted: Wed Apr 09, 2003 1:29 pm Post subject:

this is what I use.
very simple, but it works:

Qubax · Posted: Thu Apr 10, 2003 6:46 am Post subject:

from my brother i know, that you also have set a nameserver ip somewhere (i think i should be found somewhere near the gateway)
for forwarding an firewall you may havbe a look at http://projectfiles.com/firewall

ignarus · Posted: Thu Apr 10, 2003 11:47 am Post subject: got it working

Hi

thanks for the help,
I've got it working now.

Kulfaangaren! · Posted: Thu Apr 10, 2003 12:54 pm Post subject: Hmmm..

You guys all use the MASQUERADE target....aren't we supposed to use the SNAT target these days ?

cato` · Posted: Thu Apr 10, 2003 12:57 pm Post subject: Re: Hmmm..

Kulfaangaren! · Posted: Thu Apr 10, 2003 1:47 pm Post subject:

Ahhh ok, didn't think about that....just because I have a static IP not everyone does

Thanks for pointing that out.

// Fredrik