From: Martin Daur (mdaur_at_gmx.net)
Date: Sun 05 Oct 2003 - 08:32:13 BST
Hallo,
i have one physical machine running kernel 2.4.22-ctx17a (user tools
0.24) with a default route to the pppoe dev (ppp0). eth0 is the local
network, and eth1 is connected to the dsl modem.
When I now change in an vps context with chbind and chcontext, i can
ping hosts outside (over pppoe) but for all other packets (TCP/ UDP) it
seems that masquerading is not done!
(ethereal shows that packets send out of an vps contains still the local
source ip eg. 192.0.0.xxx and not that one from the masq dev)
# Masquerading
iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o ppp0 -j MASQUERADE
# VPS config
S_HOSTNAME="x11-unstable"
IPROOT="192.168.0.242"
IPROOTDEV="eth0"
ONBOOT="no"
S_NICE=""
S_FLAGS="lock nproc"
ULIMIT="-H -u 256 -n 1024"
S_CAPS="CAP_NET_RAW"
i ve tried different IPROOT environments (on time all dev's) without any
sucsess. also i tried with my iptables konfiguration and without any
rules (only masq), it seems not to be a firewall misconfiguration.
by the way masqurading works fine for other physical machines in the
local network (and if they are running vps too). there must be a problem
with masq of local packets.
cu martin
-- Martin Daur Tel: 07344/6915 0175/8545882 * Please Encrypt * Weilerstr. 48/6 Fax: 07344/kaputt * Certificates, * D-89143 Blaubeuren ICQ: 39532297 * GnuPG, PGP * Germany Web: mdaur.homeip.net/martin ******************