[K12OSN] Blocked net access

David Whitmer thewhitmers at gmail.com
Fri Jan 12 17:57:09 UTC 2007


On 1/12/07, Eric Harrison <eharrison at mail.mesd.k12.or.us> wrote:
> The nat service is pretty simple. If you strip it down, this is all it does:
>
>        PUBLIC_ETHERNET="eth1"
>        iptables -t nat -A POSTROUTING -o $PUBLIC_ETHERNET -j MASQUERADE
>        echo 1 > /proc/sys/net/ipv4/ip_forward
>
>
> It doesn't care if the interface is up or down, what the ip address is,
> etc, etc. The only configurable item is the interface that is nat'd.
>
> If your public interface is on something other than eth1, edit
> /etc/init.d/nat and change the "PUBLIC_ETHERNET=" line.
>
>
> -Eric

I'll check all that this weekend (I'm not at the school today).
Thanks for the info!

I'd be nice to have this working.  Though, frankly, it's not critical
since, with this particular server (serving a single classroom) the
Windows PCs connected to its subnet are already using NX Client to run
apps on the server and, as needed, access the Internet.

David Whitmer
Director of Media & Technology
Calvary Schools of Holland (Michigan)
web: www.calvaryschoolsholland.org
email: the.whitmers at gmail.com




More information about the K12OSN mailing list