Ubuntu Router misc questions

Donatas fetdonatas at gmail.com
Tue Jan 26 10:18:46 UTC 2010 

Thank You very much. Now it seems everything is working. and Your command
iptables -L -t nat works.

P.S. it would be interesting to continue discussion about ufw configuration,
based on bsd pf, while i had sometime tried this and it works enogh cool on
openbsd

Thanks Again,
Donatas

On Tue, Jan 26, 2010 at 11:39 AM, Ian Coetzee <ubuntu at iancoetzee.za.net>wrote:

> On Tue, Jan 26, 2010 at 11:27 AM, Donatas <fetdonatas at gmail.com> wrote:
>
>> So i disabled ufw, added your iptables and save iptables configuration
>> then i check if iptables is working and get this one:
>>
>>
>> root at rout:~# iptables -L
>> Chain INPUT (policy ACCEPT)
>> target     prot opt source               destination
>>
>> Chain FORWARD (policy ACCEPT)
>> target     prot opt source               destination
>>
>> Chain OUTPUT (policy ACCEPT)
>> target     prot opt source               destination
>>
>>
> try using
>
> iptables -L -t nat
>
> the -t switch is used to tell it which table to use.
>
>
>>
>>
>>
>> On Tue, Jan 26, 2010 at 11:18 AM, Ian Coetzee <ubuntu at iancoetzee.za.net>wrote:
>>
>>> On Tue, Jan 26, 2010 at 11:05 AM, Donatas <fetdonatas at gmail.com> wrote:
>>>
>>>> Yes, i can even ping the router's external interface from the dhcp
>>>> client
>>>>
>>>>
>>> ok then its definately a firewall issue.
>>>
>>> you need a masquerade rule on the router.
>>>
>>> using iptables it should be
>>>
>>> iptables -t nat -A POSTROUTING -j MASQUERADE
>>>
>>> it will masquerade all packets, if you only want to masquerade outgoing
>>> packets
>>>
>>> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
>>>
>>> I dont know about ufw.
>>>
>>> Regards
>>> Ian
>>>
>>>
>>>>
>>>> On Tue, Jan 26, 2010 at 10:55 AM, Ian Coetzee <ubuntu at iancoetzee.za.net
>>>> > wrote:
>>>>
>>>>> On Tue, Jan 26, 2010 at 10:31 AM, Donatas <fetdonatas at gmail.com>wrote:
>>>>>
>>>>>> This one is enabled.
>>>>>> Even if i turn off firewall - there is no internet on internal pc
>>>>>>
>>>>>>
>>>>> can you get to the internet from the server/router?
>>>>>
>>>>>
>>>>>> Donatas
>>>>>>
>>>>>>
>>>>>> On Tue, Jan 26, 2010 at 10:23 AM, Ian Coetzee <
>>>>>> ubuntu at iancoetzee.za.net> wrote:
>>>>>>
>>>>>>> On Tue, Jan 26, 2010 at 8:39 AM, Donatas <fetdonatas at gmail.com>wrote:
>>>>>>>
>>>>>>>> Hello,
>>>>>>>> i'm trying to understand how ubuntu server 8.04 firewall is made,
>>>>>>>> while i always got configured earlier versions for internet routing, and now
>>>>>>>> i'm confused.
>>>>>>>> I set up my both network interfaces (eth0 with dhcp and eth1 with
>>>>>>>> static IP for internal network). I also configure dhcp3-server and it works.
>>>>>>>> While i connect some PC to this router, i have no internet access. I've
>>>>>>>> tried the UFW which is new for me and it's confusing while using both
>>>>>>>> iptables and bsd type configuration. Tried traditional ip tables, but still
>>>>>>>> it doensn't work. If someone could show me the right way - i mean the
>>>>>>>> easiest firewall configuration.
>>>>>>>>
>>>>>>>> Thank You!
>>>>>>>>
>>>>>>>
>>>>>>> Have you tried
>>>>>>>
>>>>>>> echo "1" > /proc/sys/net/ipv4/ip_forward
>>>>>>>
>>>>>>> Regards
>>>>>>> Ian
>>>>>>>
>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> Regards,
>>>>>>>> Donatas
>>>>>>>>
>>>>>>>> --
>>>>>>>> ubuntu-users mailing list
>>>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>>>> Modify settings or unsubscribe at:
>>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> ubuntu-users mailing list
>>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>>> Modify settings or unsubscribe at:
>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> ubuntu-users mailing list
>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>> Modify settings or unsubscribe at:
>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>
>>>>>>
>>>>>
>>>>> --
>>>>> ubuntu-users mailing list
>>>>> ubuntu-users at lists.ubuntu.com
>>>>> Modify settings or unsubscribe at:
>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> Su pagarba,
>>>> Donatas
>>>>
>>>> --
>>>> ubuntu-users mailing list
>>>> ubuntu-users at lists.ubuntu.com
>>>> Modify settings or unsubscribe at:
>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>
>>>>
>>>
>>> --
>>> ubuntu-users mailing list
>>> ubuntu-users at lists.ubuntu.com
>>> Modify settings or unsubscribe at:
>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>
>>>
>>
>>
>> --
>> ubuntu-users mailing list
>> ubuntu-users at lists.ubuntu.com
>> Modify settings or unsubscribe at:
>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>
>>
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>
>


-- 
Su pagarba,
Donatas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20100126/715bc498/attachment.html>

More information about the ubuntu-users mailing list