On Tue, 2011-01-04 at 08:45 +0530, benjamin fernandis wrote: > Hi Friends, > > I have rhel 5.5 on that i compiled kernel 2.6.36.2 and iptables 1.4.9 . > > After that i configured basic internet sharing setings in iptables. > > Iptables rule : > [root@localhost ~]# iptables -L -nvx -t nat > Chain PREROUTING (policy ACCEPT 9 packets, 1068 bytes) > pkts bytes target prot opt in out source > destination > > Chain INPUT (policy ACCEPT 1 packets, 28 bytes) > pkts bytes target prot opt in out source > destination > > Chain OUTPUT (policy ACCEPT 58 packets, 6477 bytes) > pkts bytes target prot opt in out source > destination > > Chain POSTROUTING (policy ACCEPT 55 packets, 6225 bytes) > pkts bytes target prot opt in out source > destination > 3 252 MASQUERADE all -- * * 10.10.10.0/24 > 0.0.0.0/0 > [root@localhost ~]# > > and also i enabled ip_forward. > > net.ipv4.ip_forward = 1 > net.ipv4.conf.default.rp_filter = 0 > net.ipv4.conf.default.accept_source_route = 0 > kernel.sysrq = 0 > kernel.core_uses_pid = 1 > kernel.msgmnb = 65536 > kernel.msgmax = 65536 > kernel.shmmax = 4294967295 > kernel.shmall = 268435456 > > at my gateway internet is working fine.But from my client net is not working. > You've only listed the nat table. What rules are in your mangle and filter tables (in particular the FORWARD chain)? Andy -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
