IP masquerading, Qwest

[Gontran]

* Vaughn Treude (tv6@qwest.net) wrote:
> in the ubiquitous 192.168.x.x field.  The Cisco modem that Qwest reports that its address as 10.0.0.1.   DHCP seems to be running fine for
> me, and I can access the Web, email,  and news on the Mandrake box.  But the other machines can't see the Cisco modem.

You'll probably get a lot of help with this.
Do you have a two ethernet card (bastion) setup?  Are you using aliasing?
What's your routing table look like?

% /sbin/ifconfig -a
% netstat -rn

Are your other boxes pointing to one of your interfaces as _their_ gateway?

>     The masquerading how-to suggests that I try to ping the dynamic IP address from one of the internal machines.  In this case, I know
> nothing to try but 10.0.0.1.   It doesn't surprise me that the other machines can't reach the modem at this address.  Is this an inherent
> problem with it being assigned one of those "local" IP addresses, or is it more likely that my IP masquerading setup isn't correct?
> 
>     Could these be indicative of the problem?  If so, what do they mean?  I'm using the "sample" rc.firewall script from the
> IP masquerading "howto"; not too secure, I know, but I've got to start somewhere.

That script blows. For 2.2 kernels try something like seawall.
http://seawall.sourceforge.net

Gontran