1 |
On 8/21/06, Etaoin Shrdlu <shrdlu@×××××××××××××.org> wrote: |
2 |
> |
3 |
> On Monday 21 August 2006 16:22, fei huang wrote: |
4 |
> |
5 |
> > still no luck... I tried to build everything in kernel, and later |
6 |
> > build additional iptable_filter as module, add iptable to my default |
7 |
> > run level,, neither of them works.. |
8 |
> |
9 |
> I'd try first with iptables filters *disabled*, to make sure it's not a |
10 |
> firewall issue. Once it works, enable packet filtering (if you need it). |
11 |
> But until you are sure it works, make sure nothing prevents traffic |
12 |
> flow, so disable iptables filters. |
13 |
|
14 |
|
15 |
mm, I disabled it from auto loading. |
16 |
|
17 |
> I found there is a warning message after emerge iptables says: ip |
18 |
> > forwarding is not included in iptables any more. what does it mean? is |
19 |
> > that related with the issue? |
20 |
> |
21 |
> It means that, if you want ip forwarding, you have to enable it manually |
22 |
> using the command |
23 |
> |
24 |
> echo 1 > /proc/sys/net/ipv4/ip_forward |
25 |
> |
26 |
> To verify that forwarding is working, simply do |
27 |
> |
28 |
> cat /proc/sys/net/ipv4/ip_forward |
29 |
> |
30 |
> and it should print "1". |
31 |
> Keep in mind that if you reboot, you have to re-enable forwarding if you |
32 |
> want it again. |
33 |
|
34 |
|
35 |
gentoo might do that trick for me, everytime I check that value, it shows |
36 |
1. |
37 |
|
38 |
Finally, run a network analyzer like wireshark and see for yourself |
39 |
> what's happening. I'd look at ARP packets first: make sure ARP is |
40 |
> working correctly. |
41 |
> -- |
42 |
> gentoo-user@g.o mailing list |
43 |
|
44 |
|
45 |
uh, that's a good idea, I'll emege wireshark and see what's happening, the |
46 |
most annoying thing is that there's no log for troubleshooting, I wonder why |
47 |
iptable never write anything to syslog? that's wierd. |
48 |
|
49 |
|
50 |
regards |
51 |
|
52 |
daniel |