[wellylug] Connecting to the external world

Edouard CHALARON e.chalaron at paradise.net.nz
Sat Jan 19 20:39:24 NZDT 2002


> > and moved this
> >
> > ipchains -P forward DENY
> > ipchains -A forward -s 192.168.1.0/24 -j MASQ
> >
> > from /etc/rc.d/rc.local to /etc/ppp/ip-up.local
>
> Hmm ... you might not consider this worth worrying about, but:


Well the ip-down.local has

ipchains -F forward
ipchains -P forward ACCEPT

Therefore at boot the rules were read by rc.local and modified when closing 
ppp. Then dialing ppp once more provided this network error.


Now after moving

ipchains -P forward DENY
ipchains -A forward -s 192.168.1.0/24 -j MASQ

in ip-up.local, rules are established at ppp connection and removed by 
ip-down.local. 

> Any other thoughts on this?

This allows me to define other rules in rc.local (which may be convinient for 
a complex network independently from ppp, but I am still far away from that) 
that are not likely to be modified during a session. But this is just an idea 
no more, I may be completely wrong on this one.

Thanks again for your time and help.
Edouard


  .-.   Wellington
  /V\   Linux
 // \\  Users       
/(   )\ Group
 ^^-^^
        http://wlug.paradise.net.nz/

To unsubscribe from this group, send an email to:
wellylug-unsubscribe at egroups.com
  

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 




More information about the wellylug mailing list