Install Debian without internet access
Mikael Berthe
mikael.berthe at lilotux.net
Sat Sep 27 18:06:06 CEST 2008
* Matthias Camenzind <m.camenzind at live.com> [2008-09-27 07:19 +0200]:
>
> This is what i did on ubuntu:
> sudo iptables -N RH-Firewall-1-INPUT
> sudo iptables -I RH-Firewall-1-INPUT -s 192.168.0.202 -j ACCEPT
I think these two lines are useless (and the RH- prefix makes me think
it comes from a RedHat based system).
Anyway, here you're creating a chain you do not seem to use (unless
it is magically used by Ubuntu).
> sudo iptables -t nat -A POSTROUTING -j MASQUERADE -s 192.168.0.0/24
This one is necessary; you'd better specify the output interface with -o
(for example -o eth0).
> sudo iptables -t nat -A PREROUTING -p tcp -s 192.168.0.202 -d 192.168.0.200 --sport 0:65535 --dport 0:65535 -j DNAT --to-destination 192.168.1.1
> sudo iptables -t nat -A PREROUTING -p udp -s 192.168.0.202 -d 192.168.0.200 --sport 0:65535 --dport 0:65535 -j DNAT --to-destination 192.168.1.1
I wonder what it's supposed to do.
> sudo sysctl -w net.ipv4.ip_forward=1
Necessary.
> and I installed and run Firestarter (not sure if it was necessary)
Don't think so :)
--
MiKael
More information about the community
mailing list