From mboxrd@z Thu Jan 1 00:00:00 1970 From: Damion de Soto Date: Mon, 12 Jan 2004 01:57:03 +0000 Subject: Re: [LARTC] Router serving several inet ips Message-Id: <4001FEEF.8060903@snapgear.com> List-Id: References: <000a01c3d780$0fa4a520$1000a8c0@keithar> In-Reply-To: <000a01c3d780$0fa4a520$1000a8c0@keithar> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: lartc@vger.kernel.org Hi Carlos, > The iptables after '#' is what i tried.. but it did not work, it gave me > this message: > debian:/etc/init.d# sh nat.sh > Warning: weird character in interface `eth1:0' (No aliases, :, ! or *). > Warning: weird character in interface `eth1:0' (No aliases, :, ! or *). > iptables v1.2.7a: multiple -j flags not allowed > > #iptables -t nat -A POSTROUTING -o eth1:0 > #iptables -A FORWARD -i eth0 -j ACCEPT -m state --state > NEW,ESTABLISHED,RELATED > #iptables -A FORWARD -i eth1:0 -j ACCEPT -m state --state > ESTABLISHED,RELATED -j MASQUERADE You need to fix those 3 lines just like the error messages say. Iptables uses the real interface (eth1) not the aliased one. and you can't combine two -j flags ACCEPT and MASQUERADE. I assume the -j MASQUERADE option is a mistake and should belong elsewhere. -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Damion de Soto - Software Engineer email: damion@snapgear.com SnapGear - A CyberGuard Company --- ph: +61 7 3435 2809 | Custom Embedded Solutions fax: +61 7 3891 3630 | and Security Appliances web: http://www.snapgear.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ --- Free Embedded Linux Distro at http://www.snapgear.org --- _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/