On Tue, Nov 13, 2001 at 09:07:54PM -0600, David Blevins wrote: > I spent all day reading about gateways, routing, etc. in order to setup > Linux as my gateway. I actually got it setup, but from what I understand > the approach I tried is terribly insecure. > > I did this and got it running: > # echo 1 >/proc/sys/net/ipv4/ip_forward > # ipchains -F > # ipchains -P forward ACCEPT > # ipchains -A forward -s 192.168.1.0/24 -d 0/0 -j MASQ > > That works, but everything is reset when I restart my network. And, as I > read, this is apparently insecure. > > What is the proper way to do this? > > We'll use these numbers as an example of my net config: > eth0 192.168.1.1 # The LAN obviously. > eth1 24.32.5.105 # The DHCP assigned WAN IP > If you're using Debian, get the ipmasq package. Great stuff. -- johntrammell at yahoo.com | 78BA 706C C5F9 9321 E7C4 933B D063 907B A88E 924B Twin Cities Linux Users Group Mailing List (TCLUG) Minneapolis/St. Paul, Minnesota http://www.mn-linux.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 240 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20011114/18687db2/attachment.pgp