F8 as Router is not working any more!!!
Antonio
antonio.montagnani at gmail.com
Sat Nov 10 13:55:04 UTC 2007
I had to re-install F8 as upgrading from DVD failed on dependency
check (freezing)
My router was working fine in F7, and it was acting as a router with
transparent proxy
I had backuped all etc configuration files, so I copied back iptables,
squid.conf, systcl and rebooted.
Some notes:
eth0 became eth1 during installation
eth1 became eth0
I set back each card as in F7 (eth0 is the card connected to the
Internet, eth1 to my internal network
eth0 Link encap:Ethernet HWaddr 52:54:05:E5:82:46
inet addr:192.168.1.2 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::5054:5ff:fee5:8246/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:60644 errors:0 dropped:0 overruns:0 frame:0
TX packets:47213 errors:0 dropped:0 overruns:0 carrier:0
collisions:13 txqueuelen:1000
RX bytes:84757378 (80.8 MiB) TX bytes:4274281 (4.0 MiB)
Interrupt:16 Base address:0xec00
eth1 Link encap:Ethernet HWaddr 00:11:D8:BF:9F:05
inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::211:d8ff:febf:9f05/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:363 errors:0 dropped:0 overruns:0 frame:0
TX packets:26 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:35917 (35.0 KiB) TX bytes:4155 (4.0 KiB)
Interrupt:21
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:3579 errors:0 dropped:0 overruns:0 frame:0
TX packets:3579 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:3796220 (3.6 MiB) TX bytes:3796220 (3.6 MiB)
ppp0 Link encap:Point-to-Point Protocol
inet addr:87.5.133.136 P-t-P:192.168.100.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1492 Metric:1
RX packets:60469 errors:0 dropped:0 overruns:0 frame:0
TX packets:47007 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:3
RX bytes:83416497 (79.5 MiB) TX bytes:3225204 (3.0 MiB)
I can ping eth1 but not eth0 (that I should get as it is acting as a router...)
This is my iptables
# Generated by iptables-save v1.2.6a on Fri Feb 21 09:27:33 2003
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A POSTROUTING -s 192.168.0.0/24 -o ppp0 -j MASQUERADE
#-A POSTROUTING -s 192.168.0.0/24 -o eth1 -j MASQUERADE
# Forward HTTP connections to Squid proxy
-A PREROUTING -p tcp -m tcp -i eth0 --dport 80 -j REDIRECT --to-ports 3128
COMMIT
# Completed on Fri Feb 21 09:27:33 2003
# Generated by iptables-save v1.2.6a on Fri Feb 21 09:27:33 2003
*mangle
:PREROUTING ACCEPT [9:432]
:INPUT ACCEPT [3:234]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [9:684]
:POSTROUTING ACCEPT [17:1292]
COMMIT
# Completed on Fri Feb 21 09:27:33 2003
# Generated by iptables-save v1.2.6a on Fri Feb 21 09:27:33 2003
*filter
:FORWARD DROP [0:0]
:INPUT DROP [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -i eth0 -j ACCEPT
-A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -i eth0 -j ACCEPT
COMMIT
# Completed on Fri Feb 21 09:27:33 2003
this is my lsmod output:
lsmod
Module Size Used by
xt_state 6081 2
iptable_filter 6465 1
iptable_mangle 6337 0
ipt_MASQUERADE 6721 1
ipt_REDIRECT 5825 1
xt_tcpudp 6977 1
iptable_nat 9669 1
nf_nat 18669 3 ipt_MASQUERADE,ipt_REDIRECT,iptable_nat
nf_conntrack_ipv4 11717 4 iptable_nat
nf_conntrack 51977 5
xt_state,ipt_MASQUERADE,iptable_nat,nf_nat,nf_conntrack_ipv4
nfnetlink 8281 3 nf_nat,nf_conntrack_ipv4,nf_conntrack
ip_tables 14213 3 iptable_filter,iptable_mangle,iptable_nat
x_tables 14277 6
xt_state,ipt_MASQUERADE,ipt_REDIRECT,xt_tcpudp,iptable_nat,ip_tables
vfat 13249 1
fat 45277 1 vfat
rfcomm 36825 0
l2cap 25537 9 rfcomm
bluetooth 49316 4 rfcomm,l2cap
autofs4 20421 2
sunrpc 140765 1
ppp_synctty 11073 0
ppp_async 12353 1
crc_ccitt 6081 1 ppp_async
ppp_generic 24917 6 ppp_synctty,ppp_async
slhc 9025 1 ppp_generic
loop 16581 0
dm_multipath 18249 0
ipv6 245989 24
snd_intel8x0 30429 3
snd_ac97_codec 92389 1 snd_intel8x0
ac97_bus 6081 1 snd_ac97_codec
snd_seq_dummy 6725 0
snd_seq_oss 29889 0
snd_seq_midi_event 9793 1 snd_seq_oss
snd_seq 44849 5 snd_seq_dummy,snd_seq_oss,snd_seq_midi_event
snd_pcm_oss 37569 0
nvidia 6213840 24
snd_mpu401 11241 0
snd_mixer_oss 16705 1 snd_pcm_oss
snd_mpu401_uart 10177 1 snd_mpu401
ne2k_pci 12449 0
snd_pcm 63685 3 snd_intel8x0,snd_ac97_codec,snd_pcm_oss
8390 12225 1 ne2k_pci
snd_rawmidi 21185 1 snd_mpu401_uart
skge 37457 0
button 10321 0
i2c_i801 12113 0
iTCO_wdt 13797 0
iTCO_vendor_support 7109 1 iTCO_wdt
i2c_core 21825 2 nvidia,i2c_i801
snd_seq_device 10061 4 snd_seq_dummy,snd_seq_oss,snd_seq,snd_rawmidi
pl2303 20933 0
snd_timer 20549 2 snd_seq,snd_pcm
usbserial 31017 1 pl2303
usb_storage 73345 1
snd 43461 18
snd_intel8x0,snd_ac97_codec,snd_seq_oss,snd_seq,snd_pcm_oss,snd_mpu401,snd_mixer_oss,snd_mpu401_uart,snd_pcm,snd_rawmidi,snd_seq_device,snd_timer
snd_page_alloc 11337 2 snd_intel8x0,snd_pcm
parport_pc 26981 0
parport 32393 1 parport_pc
soundcore 9633 1 snd
usblp 14913 0
ns558 8001 0
gameport 14665 2 ns558
sg 31965 0
sr_mod 17509 0
cdrom 33889 1 sr_mod
floppy 53125 0
dm_snapshot 17765 0
dm_zero 5825 0
dm_mirror 21569 0
dm_mod 46209 9 dm_multipath,dm_snapshot,dm_zero,dm_mirror
ata_generic 8901 0
ata_piix 16709 2
libata 99633 2 ata_generic,ata_piix
sd_mod 27329 5
scsi_mod 119757 5 usb_storage,sg,sr_mod,libata,sd_mod
ext3 110665 2
jbd 52457 1 ext3
mbcache 10177 1 ext3
uhci_hcd 23633 0
ohci_hcd 21445 0
ehci_hcd 31693 0
--
Antonio Montagnani
Skype : antoniomontag
More information about the fedora-list
mailing list