[GLLUG] ipchains

Benjamin Minshall minshal1@msu.edu
Wed, 12 Feb 2003 12:57:15 -0500 

I'm not sure about this particular problem, but it's gotta have something to
do with that custom kernel.  Do you need custom for a particular reason?
The packaged kernels in debian are quite complete (including masquerading
and all sorts of other networking goodies in modules).  I haven't compiled a
kernel in a while, but I think there's a specific option for "IP Forwarding"
in addition to "IP Masquerading" and seperate from any of the "/proc" stuff.

Did you compile any of the networking components in modules, and if so are
they loaded properly?

Good luck,
-Ben

> -----Original Message-----
> From: linux-user-admin@egr.msu.edu
> [mailto:linux-user-admin@egr.msu.edu]On Behalf Of David Lee Lambert
> Sent: Tuesday, February 11, 2003 2:48 PM
> To: linux-user@egr.msu.edu
> Subject: [GLLUG] ipchains
>
>
> I used to use my Linux box for masquerading ssh/https/etc connections from
> the LAN it's attached to,  but over the Christmas break the boot
> hard-drive crashed so I installed a newer version of Debian and it came
> with a 2.2 series kernel.  Later I compiled a custom kernel including IP
> masquerading support,  but when I try it out nothing happens.  I can run
> ipchains and add all sorts of masquerading rules to the routing tables,
> but my Windows boxes still time out when I try to do TCP or ping to the
> Internet.
>
> The only thing I can think of is related to a note that I find in the
> HOWTOs and in the help for the 'IP masquerading' in the
> kernel-configuration:
>
> > The IP masquerading code will only work if IP forwarding is enabled
> > in your kernel; you can do this by saying Y to "/proc
> > filesystem support" and "Sysctl support" below and then executing a
> > line like
> >
> >   echo "1" > /proc/sys/net/ipv4/ip_forward
> >
> > from a boot time script after the /proc filesystem has been mounted.
>
> When I try doing this,  I get a 'file not found' error.  I do have a /proc
> filesystem,  and the option '/proc filesystem' is enabled in the kernel
> configuration (under the section Filesystems);  is there another option
> elsewhere I should know about?
>
> --
> DLL
> http://www.cse.msu.edu/~lamber45/
> _______________________________________________
> linux-user mailing list
> linux-user@egr.msu.edu
> http://www.egr.msu.edu/mailman/listinfo/linux-user
>