<div class="gmail_quote">On Tue, Jan 26, 2010 at 11:05 AM, Donatas <span dir="ltr"><<a href="mailto:fetdonatas@gmail.com">fetdonatas@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"> Yes, i can even ping the router's external interface from the dhcp client<div><div></div><div class="h5"><br></div></div></blockquote><div><br></div><div>ok then its definately a firewall issue.</div><div><br></div><div> you need a masquerade rule on the router.</div><div><br></div><div>using iptables it should be</div><div><br></div><div>iptables -t nat -A POSTROUTING -j MASQUERADE</div><div><br></div><div>it will masquerade all packets, if you only want to masquerade outgoing packets</div> <div><br></div><div>iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE</div><div><br></div><div>I dont know about ufw.</div><div><br></div><div>Regards</div><div>Ian</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"> <div><div class="h5"><br><div class="gmail_quote">On Tue, Jan 26, 2010 at 10:55 AM, Ian Coetzee <span dir="ltr"><<a href="mailto:ubuntu@iancoetzee.za.net" target="_blank">ubuntu@iancoetzee.za.net</a>></span> wrote:<br> <blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"><div class="gmail_quote"><div>On Tue, Jan 26, 2010 at 10:31 AM, Donatas <span dir="ltr"><<a href="mailto:fetdonatas@gmail.com" target="_blank">fetdonatas@gmail.com</a>></span> wrote:<br> <blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"> This one is enabled.<br>Even if i turn off firewall - there is no internet on internal pc <br><font color="#888888"><br></font></blockquote><div><br></div></div><div>can you get to the internet from the server/router? </div> <div><div> </div><blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"><font color="#888888">Donatas</font><div><div></div><div><br><br><div class="gmail_quote"> On Tue, Jan 26, 2010 at 10:23 AM, Ian Coetzee <span dir="ltr"><<a href="mailto:ubuntu@iancoetzee.za.net" target="_blank">ubuntu@iancoetzee.za.net</a>></span> wrote:<br> <blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"><div><div class="gmail_quote"><div><div></div><div>On Tue, Jan 26, 2010 at 8:39 AM, Donatas <span dir="ltr"><<a href="mailto:fetdonatas@gmail.com" target="_blank">fetdonatas@gmail.com</a>></span> wrote:<br> <blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"> Hello,<br>i'm trying to understand how ubuntu server 8.04 firewall is made, while i always got configured earlier versions for internet routing, and now i'm confused.<br>I set up my both network interfaces (eth0 with dhcp and eth1 with static IP for internal network). I also configure dhcp3-server and it works. While i connect some PC to this router, i have no internet access. I've tried the UFW which is new for me and it's confusing while using both iptables and bsd type configuration. Tried traditional ip tables, but still it doensn't work. If someone could show me the right way - i mean the easiest firewall configuration.<br> <br>Thank You!<br clear="all"></blockquote><div><br></div></div></div>Have you tried <div><br></div><div>echo "1" > /proc/sys/net/ipv4/ip_forward</div><div><br></div><div>Regards</div><div>Ian</div><div> </div> <blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"> <br>-- <br>Regards,<br><font color="#888888">Donatas<br> </font><br>--<br> ubuntu-users mailing list<br> <a href="mailto:ubuntu-users@lists.ubuntu.com" target="_blank">ubuntu-users@lists.ubuntu.com</a><br> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a><br> <br></blockquote></div><br></div> <br>--<br> ubuntu-users mailing list<br> <a href="mailto:ubuntu-users@lists.ubuntu.com" target="_blank">ubuntu-users@lists.ubuntu.com</a><br> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a><br> <br></blockquote></div><br><br> </div></div><br>--<br> ubuntu-users mailing list<br> <a href="mailto:ubuntu-users@lists.ubuntu.com" target="_blank">ubuntu-users@lists.ubuntu.com</a><br> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a><br> <br></blockquote></div></div><br> <br>--<br> ubuntu-users mailing list<br> <a href="mailto:ubuntu-users@lists.ubuntu.com" target="_blank">ubuntu-users@lists.ubuntu.com</a><br> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a><br> <br></blockquote></div><br><br clear="all"><br>-- <br></div></div>Su pagarba,<br><font color="#888888">Donatas<br> </font><br>--<br> ubuntu-users mailing list<br> <a href="mailto:ubuntu-users@lists.ubuntu.com">ubuntu-users@lists.ubuntu.com</a><br> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a><br> <br></blockquote></div><br>