I have a fresh installed CentOS 5.3 server which should route traffic between two networks like this:
network A (Internet) -- eth0 (default gw) : server : eth1 -- network B (LAN)
I have set in sysctl.conf
net.ipv4.ip_forward = 1
and routing works fine like this. But when I switch on the iptables service (with default setup, configured when installing the server), routing stops working (or at least I cannot ping a server in network A from network B). I guess the firewall is stopping it, so I read
http://www.centos.org/docs/5/html/5.2/Deployment_Guide/s1-firewall-ipt-fwd.h...
and issued the commands
# iptables -A FORWARD -i eth1 -j ACCEPT # iptables -A FORWARD -o eth1 -j ACCEPT
but that did not help.
So I am asking: what is the correct iptables command to make forwarding work?
Regards, Peter
Hi,
did you try:
iptables -I FORWARD 1 -i eth1 -j ACCEPT iptables -I FORWARD 1 -o eth1 -j ACCEPT
??
On 30.8.2009, at 20:47, Peter Peltonen wrote:
I have a fresh installed CentOS 5.3 server which should route traffic between two networks like this:
network A (Internet) -- eth0 (default gw) : server : eth1 -- network B (LAN)
I have set in sysctl.conf
net.ipv4.ip_forward = 1
and routing works fine like this. But when I switch on the iptables service (with default setup, configured when installing the server), routing stops working (or at least I cannot ping a server in network A from network B). I guess the firewall is stopping it, so I read
http://www.centos.org/docs/5/html/5.2/Deployment_Guide/s1-firewall-ipt-fwd.h...
and issued the commands
# iptables -A FORWARD -i eth1 -j ACCEPT # iptables -A FORWARD -o eth1 -j ACCEPT
but that did not help.
So I am asking: what is the correct iptables command to make forwarding work?
Regards, Peter _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Hodja Nasredin nasredin@sutra.cz
On Mon, Aug 31, 2009 at 12:03 AM, Hodja Nasredinnasredin@sutra.cz wrote:
Hi,
did you try:
iptables -I FORWARD 1 -i eth1 -j ACCEPT iptables -I FORWARD 1 -o eth1 -j ACCEPT
This did the trick, thanks!
Peter
Peter Peltonen wrote:
I have a fresh installed CentOS 5.3 server which should route traffic between two networks like this:
network A (Internet) -- eth0 (default gw) : server : eth1 -- network B (LAN)
I have set in sysctl.conf
net.ipv4.ip_forward = 1
and routing works fine like this. But when I switch on the iptables service (with default setup, configured when installing the server), routing stops working (or at least I cannot ping a server in network A from network B). I guess the firewall is stopping it, so I read
http://www.centos.org/docs/5/html/5.2/Deployment_Guide/s1-firewall-ipt-fwd.h...
and issued the commands
# iptables -A FORWARD -i eth1 -j ACCEPT # iptables -A FORWARD -o eth1 -j ACCEPT
but that did not help.
So I am asking: what is the correct iptables command to make forwarding work?
Regards, Peter _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
my iptables like that:
* iptables --table nat --append POSTROUTING --out-interface eth0 -j MASQUERADE * iptables --append FORWARD --in-interface eth1 -j ACCEPT
Regards
Firdaus i'm come from indonesia. :)
-
Fitrah Elly Firdaus -
Hodja Nasredin -
Peter Peltonen