Friday, March 10, 2006

NAT on Linux instead

Trying out the stuff in the previous post...

RR's Windows machine has some problems with the "Routing and Remote Access" - it seems to automatically change from Red to Green, and when Red, says "Don't have permissions to access" even as admin - some misconfig or virus or what?

Also, the example firewall was not allowing outgoing connects from the proxy thru the external interface. In retrospect, probably I should've created a rule mentioning the external ip address, and allowing all outgoing. Just and allowing all protocols and all ports did not work, since it was just the reverse of the rule saying all IP traffic Block.

So, doing the NATing for POP on the Linux proxy, adding to /etc/sysconfig/iptables

*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A POSTROUTING -s 192.168.x.z -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.x.y -o eth1 -j MASQUERADE

and needs

echo "1" > /proc/sys/net/ipv4/ip_forward

of course...

No comments:

Post a Comment