Shakar
05-26-2002, 11:57 AM
Hello y'all got a few Masquerading questions for all the guru's out there, I have setup SEQ in the past but for some reason I am having an awful time doing it this time, problems mainly stemming from using iptables etc.
Let me give system info first so you can follow:
EQ Machine->(100baseT crossover cable)->Linuxbox->(Modem)->Internet
Ok EQ machine is set to 192.168.1.2 ip, with its gateway aimed at 192.16.1.1 and dns servers set to the ones the ISP provides
Linuxbox's network card is set to 192.168.1.1, broadcast set to 0.0.0.255 and netmask to 255.255.255.0
Using kppp to dial my ppp connection, I was having problems for awhile with accessing the internet through it, and i used netstat to determine my default gateway was mucked up so I edited the /etc/ppp/options file to include "defaultroute", and internet from the linuxbox has worked since then, this is ok to do from the SEQ standpoint right?
Here is my netstat -rn printout:
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
162.39.200.156 0.0.0.0 255.255.255.255 UH 40 0 0 ppp0
192.168.1.0 0.0.0.0 255.255.255.0 U 40 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 40 0 0 lo
0.0.0.0 162.39.200.1 0.0.0.0 UG 40 0 0 ppp0
Sorry hope that looks somewhat normal.
Also using the rc.firewall script at the bottom of the post from this thread:
http://seq.sourceforge.net/showthread.php?threadid=566
Questions:
1) Is telling pppd daemon to establish the default gatway from the dialup ok?
2) Does that netstat printout look normal?
3) I was wondering how exactly iptables or linux in general determines that a packet sent to my ethernet card on 192.168.1.1 needs to go out through the modem? The only iptables command that seems to have anything to do with is this:
sbin/iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
And I guess I am just wondering why eth0 isn't specified in there as well?
4) The last time I had SEQ installed the config file was not in the new XML format. I compiled SEQ and had it make install, and went into the /usr/local/share/showeq directory and I found seqdef.xml, I assume this is the new config file. Do I need to rename it to showeq.xml or anything or does seq automatically look for seqdef.xml? What kind of modifications do I need to do to it for it to read information from my above network setup? I assume its the property name IP and change its string value to the EQ machines ip being 192.168.1.2? Or would I have that point to the linux machines 192.168.1.1?
Anything else that appears to be wrong with this setup please let me know..
Thanks in advance!
-Shakar
Let me give system info first so you can follow:
EQ Machine->(100baseT crossover cable)->Linuxbox->(Modem)->Internet
Ok EQ machine is set to 192.168.1.2 ip, with its gateway aimed at 192.16.1.1 and dns servers set to the ones the ISP provides
Linuxbox's network card is set to 192.168.1.1, broadcast set to 0.0.0.255 and netmask to 255.255.255.0
Using kppp to dial my ppp connection, I was having problems for awhile with accessing the internet through it, and i used netstat to determine my default gateway was mucked up so I edited the /etc/ppp/options file to include "defaultroute", and internet from the linuxbox has worked since then, this is ok to do from the SEQ standpoint right?
Here is my netstat -rn printout:
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
162.39.200.156 0.0.0.0 255.255.255.255 UH 40 0 0 ppp0
192.168.1.0 0.0.0.0 255.255.255.0 U 40 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 40 0 0 lo
0.0.0.0 162.39.200.1 0.0.0.0 UG 40 0 0 ppp0
Sorry hope that looks somewhat normal.
Also using the rc.firewall script at the bottom of the post from this thread:
http://seq.sourceforge.net/showthread.php?threadid=566
Questions:
1) Is telling pppd daemon to establish the default gatway from the dialup ok?
2) Does that netstat printout look normal?
3) I was wondering how exactly iptables or linux in general determines that a packet sent to my ethernet card on 192.168.1.1 needs to go out through the modem? The only iptables command that seems to have anything to do with is this:
sbin/iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
And I guess I am just wondering why eth0 isn't specified in there as well?
4) The last time I had SEQ installed the config file was not in the new XML format. I compiled SEQ and had it make install, and went into the /usr/local/share/showeq directory and I found seqdef.xml, I assume this is the new config file. Do I need to rename it to showeq.xml or anything or does seq automatically look for seqdef.xml? What kind of modifications do I need to do to it for it to read information from my above network setup? I assume its the property name IP and change its string value to the EQ machines ip being 192.168.1.2? Or would I have that point to the linux machines 192.168.1.1?
Anything else that appears to be wrong with this setup please let me know..
Thanks in advance!
-Shakar