masquerade is only for nat. It will forward with all accept. Thats what
its there for, my issue was that I completely forgot to give my box on
the other end a route back to 192.168.1.0/24.
On Mon, 2003-05-26 at 10:06, Bart Garst wrote:
> If I remember correctly, with the policies set to accept it won't forward.
> Try setting the forward policy to masquerade.
>
> My experience is with ipchains. I think it will apply to iptables as well.
>
> Bart
>
> >>>
> I intend to use iptables for that purpose as its role is to route
> between two vlans and provide filtering on a lan. However I am trying to
> get the routing working first.
>
> I have two nic's, an address assigned to each one is 192.168.1.0/24 and
> one is 172.16.2.0/28. I have enabled ip_forward. From the box i can ping
> out both interfaces. However its still not routing traffic. My iptables
> policys are blank and default policys are set to all accept.
>
> Any Ideas ? Thanks.
>
> On Mon, 2003-05-26 at 06:29, George Toft wrote:
> > Entelin wrote:
> > >
> > > I need to configure a linux box to route ip, I thought all i needed to
> > > do was to turn on ip_forward in /proc. Is ip tables required for this or
> > > no ?
> > >
> > > --
> > > Entelin <entelin@users.sourceforge.net>
> >
> >
> > iptables is not required to make it a router, but I recommend using
> > iptables to secure the box (at a minimum).
> >
> > George
> --
> Entelin <entelin@users.sourceforge.net>
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
--
Entelin <
entelin@users.sourceforge.net>
(text/plain)