Ubuntu Router misc questions
Ian Coetzee
ubuntu at iancoetzee.za.net
Tue Jan 26 10:28:11 UTC 2010
On Tue, Jan 26, 2010 at 12:18 PM, Donatas <fetdonatas at gmail.com> wrote:
> Thank You very much. Now it seems everything is working. and Your command
> iptables -L -t nat works.
>
> P.S. it would be interesting to continue discussion about ufw configuration,
> based on bsd pf, while i had sometime tried this and it works enogh cool on
> openbsd
>
> Thanks Again,
> Donatas
Glad to help
I would also be interested in ufw configurations :) I am starting my
VBox as we speak, it cant be that hard :)
Regards
Ian
P.S. I would realy suggest reading the man page, VERY interesting :)
>
> On Tue, Jan 26, 2010 at 11:39 AM, Ian Coetzee <ubuntu at iancoetzee.za.net>
> wrote:
>>
>> On Tue, Jan 26, 2010 at 11:27 AM, Donatas <fetdonatas at gmail.com> wrote:
>>>
>>> So i disabled ufw, added your iptables and save iptables configuration
>>> then i check if iptables is working and get this one:
>>>
>>>
>>> root at rout:~# iptables -L
>>> Chain INPUT (policy ACCEPT)
>>> target prot opt source destination
>>>
>>> Chain FORWARD (policy ACCEPT)
>>> target prot opt source destination
>>>
>>> Chain OUTPUT (policy ACCEPT)
>>> target prot opt source destination
>>
>> try using
>> iptables -L -t nat
>> the -t switch is used to tell it which table to use.
>>
>>>
>>>
>>> On Tue, Jan 26, 2010 at 11:18 AM, Ian Coetzee <ubuntu at iancoetzee.za.net>
>>> wrote:
>>>>
>>>> On Tue, Jan 26, 2010 at 11:05 AM, Donatas <fetdonatas at gmail.com> wrote:
>>>>>
>>>>> Yes, i can even ping the router's external interface from the dhcp
>>>>> client
>>>>
>>>> ok then its definately a firewall issue.
>>>> you need a masquerade rule on the router.
>>>> using iptables it should be
>>>> iptables -t nat -A POSTROUTING -j MASQUERADE
>>>> it will masquerade all packets, if you only want to masquerade outgoing
>>>> packets
>>>> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
>>>> I dont know about ufw.
>>>> Regards
>>>> Ian
>>>>
>>>>>
>>>>> On Tue, Jan 26, 2010 at 10:55 AM, Ian Coetzee
>>>>> <ubuntu at iancoetzee.za.net> wrote:
>>>>>>
>>>>>> On Tue, Jan 26, 2010 at 10:31 AM, Donatas <fetdonatas at gmail.com>
>>>>>> wrote:
>>>>>>>
>>>>>>> This one is enabled.
>>>>>>> Even if i turn off firewall - there is no internet on internal pc
>>>>>>>
>>>>>>
>>>>>> can you get to the internet from the server/router?
>>>>>>
>>>>>>>
>>>>>>> Donatas
>>>>>>>
>>>>>>> On Tue, Jan 26, 2010 at 10:23 AM, Ian Coetzee
>>>>>>> <ubuntu at iancoetzee.za.net> wrote:
>>>>>>>>
>>>>>>>> On Tue, Jan 26, 2010 at 8:39 AM, Donatas <fetdonatas at gmail.com>
>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>> Hello,
>>>>>>>>> i'm trying to understand how ubuntu server 8.04 firewall is made,
>>>>>>>>> while i always got configured earlier versions for internet routing, and now
>>>>>>>>> i'm confused.
>>>>>>>>> I set up my both network interfaces (eth0 with dhcp and eth1 with
>>>>>>>>> static IP for internal network). I also configure dhcp3-server and it works.
>>>>>>>>> While i connect some PC to this router, i have no internet access. I've
>>>>>>>>> tried the UFW which is new for me and it's confusing while using both
>>>>>>>>> iptables and bsd type configuration. Tried traditional ip tables, but still
>>>>>>>>> it doensn't work. If someone could show me the right way - i mean the
>>>>>>>>> easiest firewall configuration.
>>>>>>>>>
>>>>>>>>> Thank You!
>>>>>>>>
>>>>>>>> Have you tried
>>>>>>>> echo "1" > /proc/sys/net/ipv4/ip_forward
>>>>>>>> Regards
>>>>>>>> Ian
>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Regards,
>>>>>>>>> Donatas
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> ubuntu-users mailing list
>>>>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>>>>> Modify settings or unsubscribe at:
>>>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> ubuntu-users mailing list
>>>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>>>> Modify settings or unsubscribe at:
>>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> ubuntu-users mailing list
>>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>>> Modify settings or unsubscribe at:
>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> ubuntu-users mailing list
>>>>>> ubuntu-users at lists.ubuntu.com
>>>>>> Modify settings or unsubscribe at:
>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Su pagarba,
>>>>> Donatas
>>>>>
>>>>> --
>>>>> ubuntu-users mailing list
>>>>> ubuntu-users at lists.ubuntu.com
>>>>> Modify settings or unsubscribe at:
>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>>
>>>>
>>>>
>>>> --
>>>> ubuntu-users mailing list
>>>> ubuntu-users at lists.ubuntu.com
>>>> Modify settings or unsubscribe at:
>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>>
>>>
>>>
>>>
>>> --
>>> ubuntu-users mailing list
>>> ubuntu-users at lists.ubuntu.com
>>> Modify settings or unsubscribe at:
>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>>
>>
>>
>> --
>> ubuntu-users mailing list
>> ubuntu-users at lists.ubuntu.com
>> Modify settings or unsubscribe at:
>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>
>
>
>
> --
> Su pagarba,
> Donatas
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>
>
More information about the ubuntu-users
mailing list