Ubuntu Router misc questions

Donatas fetdonatas at gmail.com
Tue Jan 26 10:34:19 UTC 2010


Well, it is not so hard, but confused while it is working with both iptables
and pf

On Tue, Jan 26, 2010 at 12:28 PM, Ian Coetzee <ubuntu at iancoetzee.za.net>wrote:

> On Tue, Jan 26, 2010 at 12:18 PM, Donatas <fetdonatas at gmail.com> wrote:
> > Thank You very much. Now it seems everything is working. and Your command
> > iptables -L -t nat works.
> >
> > P.S. it would be interesting to continue discussion about ufw
> configuration,
> > based on bsd pf, while i had sometime tried this and it works enogh cool
> on
> > openbsd
> >
> > Thanks Again,
> > Donatas
>
> Glad to help
>
> I would also be interested in ufw configurations :) I am starting my
> VBox as we speak, it cant be that hard :)
>
> Regards
> Ian
>
> P.S. I would realy suggest reading the man page, VERY interesting :)
>
> >
> > On Tue, Jan 26, 2010 at 11:39 AM, Ian Coetzee <ubuntu at iancoetzee.za.net>
> > wrote:
> >>
> >> On Tue, Jan 26, 2010 at 11:27 AM, Donatas <fetdonatas at gmail.com> wrote:
> >>>
> >>> So i disabled ufw, added your iptables and save iptables configuration
> >>> then i check if iptables is working and get this one:
> >>>
> >>>
> >>> root at rout:~# iptables -L
> >>> Chain INPUT (policy ACCEPT)
> >>> target     prot opt source               destination
> >>>
> >>> Chain FORWARD (policy ACCEPT)
> >>> target     prot opt source               destination
> >>>
> >>> Chain OUTPUT (policy ACCEPT)
> >>> target     prot opt source               destination
> >>
> >> try using
> >> iptables -L -t nat
> >> the -t switch is used to tell it which table to use.
> >>
> >>>
> >>>
> >>> On Tue, Jan 26, 2010 at 11:18 AM, Ian Coetzee <
> ubuntu at iancoetzee.za.net>
> >>> wrote:
> >>>>
> >>>> On Tue, Jan 26, 2010 at 11:05 AM, Donatas <fetdonatas at gmail.com>
> wrote:
> >>>>>
> >>>>> Yes, i can even ping the router's external interface from the dhcp
> >>>>> client
> >>>>
> >>>> ok then its definately a firewall issue.
> >>>> you need a masquerade rule on the router.
> >>>> using iptables it should be
> >>>> iptables -t nat -A POSTROUTING -j MASQUERADE
> >>>> it will masquerade all packets, if you only want to masquerade
> outgoing
> >>>> packets
> >>>> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
> >>>> I dont know about ufw.
> >>>> Regards
> >>>> Ian
> >>>>
> >>>>>
> >>>>> On Tue, Jan 26, 2010 at 10:55 AM, Ian Coetzee
> >>>>> <ubuntu at iancoetzee.za.net> wrote:
> >>>>>>
> >>>>>> On Tue, Jan 26, 2010 at 10:31 AM, Donatas <fetdonatas at gmail.com>
> >>>>>> wrote:
> >>>>>>>
> >>>>>>> This one is enabled.
> >>>>>>> Even if i turn off firewall - there is no internet on internal pc
> >>>>>>>
> >>>>>>
> >>>>>> can you get to the internet from the server/router?
> >>>>>>
> >>>>>>>
> >>>>>>> Donatas
> >>>>>>>
> >>>>>>> On Tue, Jan 26, 2010 at 10:23 AM, Ian Coetzee
> >>>>>>> <ubuntu at iancoetzee.za.net> wrote:
> >>>>>>>>
> >>>>>>>> On Tue, Jan 26, 2010 at 8:39 AM, Donatas <fetdonatas at gmail.com>
> >>>>>>>> wrote:
> >>>>>>>>>
> >>>>>>>>> Hello,
> >>>>>>>>> i'm trying to understand how ubuntu server 8.04 firewall is made,
> >>>>>>>>> while i always got configured earlier versions for internet
> routing, and now
> >>>>>>>>> i'm confused.
> >>>>>>>>> I set up my both network interfaces (eth0 with dhcp and eth1 with
> >>>>>>>>> static IP for internal network). I also configure dhcp3-server
> and it works.
> >>>>>>>>> While i connect some PC to this router, i have no internet
> access. I've
> >>>>>>>>> tried the UFW which is new for me and it's confusing while using
> both
> >>>>>>>>> iptables and bsd type configuration. Tried traditional ip tables,
> but still
> >>>>>>>>> it doensn't work. If someone could show me the right way - i mean
> the
> >>>>>>>>> easiest firewall configuration.
> >>>>>>>>>
> >>>>>>>>> Thank You!
> >>>>>>>>
> >>>>>>>> Have you tried
> >>>>>>>> echo "1" > /proc/sys/net/ipv4/ip_forward
> >>>>>>>> Regards
> >>>>>>>> Ian
> >>>>>>>>
> >>>>>>>>>
> >>>>>>>>> --
> >>>>>>>>> Regards,
> >>>>>>>>> Donatas
> >>>>>>>>>
> >>>>>>>>> --
> >>>>>>>>> ubuntu-users mailing list
> >>>>>>>>> ubuntu-users at lists.ubuntu.com
> >>>>>>>>> Modify settings or unsubscribe at:
> >>>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>>>>>>>
> >>>>>>>>
> >>>>>>>>
> >>>>>>>> --
> >>>>>>>> ubuntu-users mailing list
> >>>>>>>> ubuntu-users at lists.ubuntu.com
> >>>>>>>> Modify settings or unsubscribe at:
> >>>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>>>>>>
> >>>>>>>
> >>>>>>>
> >>>>>>>
> >>>>>>> --
> >>>>>>> ubuntu-users mailing list
> >>>>>>> ubuntu-users at lists.ubuntu.com
> >>>>>>> Modify settings or unsubscribe at:
> >>>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>>>>>
> >>>>>>
> >>>>>>
> >>>>>> --
> >>>>>> ubuntu-users mailing list
> >>>>>> ubuntu-users at lists.ubuntu.com
> >>>>>> Modify settings or unsubscribe at:
> >>>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>>>>
> >>>>>
> >>>>>
> >>>>>
> >>>>> --
> >>>>> Su pagarba,
> >>>>> Donatas
> >>>>>
> >>>>> --
> >>>>> ubuntu-users mailing list
> >>>>> ubuntu-users at lists.ubuntu.com
> >>>>> Modify settings or unsubscribe at:
> >>>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>>>
> >>>>
> >>>>
> >>>> --
> >>>> ubuntu-users mailing list
> >>>> ubuntu-users at lists.ubuntu.com
> >>>> Modify settings or unsubscribe at:
> >>>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>>
> >>>
> >>>
> >>>
> >>> --
> >>> ubuntu-users mailing list
> >>> ubuntu-users at lists.ubuntu.com
> >>> Modify settings or unsubscribe at:
> >>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>>
> >>
> >>
> >> --
> >> ubuntu-users mailing list
> >> ubuntu-users at lists.ubuntu.com
> >> Modify settings or unsubscribe at:
> >> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >>
> >
> >
> >
> > --
> > Su pagarba,
> > Donatas
> >
> > --
> > ubuntu-users mailing list
> > ubuntu-users at lists.ubuntu.com
> > Modify settings or unsubscribe at:
> > https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
> >
> >
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>



-- 
Su pagarba,
Donatas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20100126/f2b580f3/attachment.html>


More information about the ubuntu-users mailing list