Thanks Alexis On Thu, 2004-02-19 at 15:01, Alexis wrote: > Yes, i have at least 4 firewalls running SNAT and DNAT with 2.6.2 and > iptables 1.2.9 without any problem. (using redhat 8,9 or debian) Are you masquerading as well ? > > I'm getting suspicious this could be a mandrake thing, as the lib iptables is split in to two sections , vanilla and mandrake depending on whether a 2.4 or 2.6 kernel is used a sym link points at the libs. > > IP forwarding could be enabled and disabled at > > /proc/sys/net/ipv4/ip_forward if this is your question this is set to 1, so enabled > Richard > > > On Thu, 2004-02-19 at 11:48, Richard Bown wrote: > > Hi > > having a real headach with this > > Running kernel-2.6.2-3mdk patched for win4lin > > iptables 1.2.9-5mdk > > shorewall 1.4.8-3mdk > > modules loaded are :- > > ipt_TOS 2240 0 - Live 0xe197f000 > > ipt_REJECT 6464 0 - Live 0xe198e000 > > ipt_LOG 5312 0 - Live 0xe198b000 > > ipt_state 1728 2 - Live 0xe1985000 > > ipt_multiport 1856 0 - Live 0xe1983000 > > ipt_conntrack 2304 0 - Live 0xe1981000 > > iptable_filter 2624 1 - Live 0xe1932000 > > iptable_mangle 2624 0 - Live 0xe18d2000 > > iptable_nat 23116 1 ipt_MASQUERADE, Live 0xe18c3000 > > ip_conntrack 31120 4 ipt_MASQUERADE,ipt_state,ipt_conntrack,iptable_nat, > > Live 0xe1963000 > > ip_tables 16704 10 > > ipt_MASQUERADE,ipt_TOS,ipt_REJECT,ipt_LOG,ipt_state,ipt_multiport,ipt_conntrack,iptable_filter,iptable_mangle,iptable_nat, Live 0xe1952000 > > > > > > now in the 2.4 series kernels if I remember right you could turn /off > > IPV4 forwarding, I hav'nt found this at all in the config file on a > > 2.6.2 kernel. > > So as you guys are more at the iptables end, is anyone successfully > > getting MASQ,& DNAT functional with a 2.6.2 kernel, and maybe on a > > mandrake system :) > > > > Thanks > > Richard -- Richard Bown <richard.bown@xxxxxxxxxxxxxxxx>
