On Sunday 2008-04-13 13:10, Peter Boughton wrote: >On Sun, Apr 13, 2008 at 2:30 AM, whiplash <whiplash@xxxxxxxxxxxx> wrote: >> You don't need iptables at all. >> Just enable packet forwarding on the linux box: >> >> echo "1">/proc/sys/net/ipv4/ip_forward >> >> and add appropriate routing rules on both Xp machines: >> >> on 192.168.1.2 >> route add 192.168.0.0 mask 255.255.255.0 192.168.1.1 >> >> on 192.168.0.3 >> route add 192.168.1.0 mask 255.255.255.0 192.168.0.1 >> >> (I'm assuming both networks are /24) No need. If you add the interface address, rules for the subnet will automatically be added, in other words: ip addr add 192.168.1.2/24 dev eth0 will cause 192.168.1.0/24 to show up in `ip route` (preferred over `route`) with a 'proto kernel', which says the kernel created this one automatically. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
