From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1H6jNm-0000e7-Dd for garchives@archives.gentoo.org; Tue, 16 Jan 2007 08:09:26 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l0G88IX4017160; Tue, 16 Jan 2007 08:08:18 GMT Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.225]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l0G83xv7031863 for ; Tue, 16 Jan 2007 08:04:00 GMT Received: by wx-out-0506.google.com with SMTP id i30so2921285wxd for ; Tue, 16 Jan 2007 00:03:59 -0800 (PST) DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=sgn86RiLqYTW6OI+z+GNg99VgN7kEg89UWq9yPQIG3fG4DddhAZ/NtZiM0yjJ7uBNA/1py5XWroQDbFcM1RxeLWhttZLlzdLcKASMMR+s6AFhlcCWH+x5CurJWs8YW2wQ6ziq08E508cOQ+B8ZVF+S87f4knlX8WRlz8WzeDHkg= Received: by 10.90.98.10 with SMTP id v10mr3894631agb.1168934639640; Tue, 16 Jan 2007 00:03:59 -0800 (PST) Received: by 10.90.56.8 with HTTP; Tue, 16 Jan 2007 00:03:59 -0800 (PST) Message-ID: <6142e6140701160003r1fcf996mf199bef9aa85ebdf@mail.gmail.com> Date: Tue, 16 Jan 2007 09:03:59 +0100 From: "Daniel Pielmeier" To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Setting up a home router In-Reply-To: <20070116014049.031f8e0f.hilse@web.de> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <6142e6140701141127ke803445jb5d9a89f8fa523a@mail.gmail.com> <3D60AF2712C16D42A38076E52FD6E3D23F0CA7@ukmcrdembx01.rd.astrazeneca.net> <6142e6140701150055m280342c8o5058943472d1b175@mail.gmail.com> <45AB4E14.1000406@ilievnet.com> <6142e6140701151017xa81c2e6k73e0a064575780f2@mail.gmail.com> <20070116001332.1ccbfb03.hilse@web.de> <6142e6140701151530g4eca995fhfe21396929a50b73@mail.gmail.com> <20070116014049.031f8e0f.hilse@web.de> X-Archives-Salt: 04735a01-9e0c-4a04-83ea-37c63d13ed7c X-Archives-Hash: 49cf6ebe9a315009568ba2d96a03bd88 > But everything looks quite normal, except for that packets aren't > routed. So its up to somebody else to tell exactly what that "policy" > module in iptables does -- and how. I don't have answers left here -- > except for the case that a manual iptables setup is sufficient. > > Personally, I'm quite happy with > > $ iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE > $ iptables -A FORWARD -i eth0 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT > $ iptables -A FORWARD -i ppp0 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT > > for the forwarding. All that fancy-schmanzy stuff that shorewall does > isn't in there, granted. Thanks, so i think that i have to get familiar with iptables itself, because i want to some more than routing. I will try this rules in the evening and tell you if it works. -- gentoo-user@gentoo.org mailing list