> #Setup our policies > $IPTABLES -P INPUT DROP > $IPTABLES -P OUTPUT ACCEPT > $IPTABLES -P FORWARD DROP > > #Our actual rules > > $IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT > $IPTABLES -A FORWARD -p all -m state --state NEW -s 192.168.0.0/24 -j ACCEPT should this be on the INPUT chain? Also, if you wanted to allow ppp0 to masq through as well, do you know if you could just add this line to do it? -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
