masquerade is only for nat. It will forward with all accept. Thats what its there for, my issue was that I completely forgot to give my box on the other end a route back to 192.168.1.0/24. On Mon, 2003-05-26 at 10:06, Bart Garst wrote: > If I remember correctly, with the policies set to accept it won't forward. > Try setting the forward policy to masquerade. > > My experience is with ipchains. I think it will apply to iptables as well. > > Bart > > >>> > I intend to use iptables for that purpose as its role is to route > between two vlans and provide filtering on a lan. However I am trying to > get the routing working first. > > I have two nic's, an address assigned to each one is 192.168.1.0/24 and > one is 172.16.2.0/28. I have enabled ip_forward. From the box i can ping > out both interfaces. However its still not routing traffic. My iptables > policys are blank and default policys are set to all accept. > > Any Ideas ? Thanks. > > On Mon, 2003-05-26 at 06:29, George Toft wrote: > > Entelin wrote: > > > > > > I need to configure a linux box to route ip, I thought all i needed to > > > do was to turn on ip_forward in /proc. Is ip tables required for this or > > > no ? > > > > > > -- > > > Entelin > > > > > > iptables is not required to make it a router, but I recommend using > > iptables to secure the box (at a minimum). > > > > George > -- > Entelin > > --------------------------------------------------- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change you mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > > --------------------------------------------------- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change you mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Entelin