[Firehol-support] Unable to let internal network access the internet via cable modem

Costa Tsaousis costa at tsaousis.gr
Mon Feb 10 20:03:31 GMT 2003 

Hi John,

If your cable connection uses PPPoE (like ADSL) use this:

-- snip --

interface eth0 dsl
    client dhcp accept

interface ppp+ internet
    client all accept

internet eth1 lan
    policy accept

router lan2internet inface eth1 outface ppp+
    masquerade
    route all accept

--- snip ---

If your cable modem routes traffic directly to your eth0, use this:

-- snip --

interface eth0 internet
    client all accept

internet eth1 lan
    policy accept

router lan2internet inface eth1 outface eth0
    masquerade
    route all accept

--- snip ---

The difference of the two, is that DSL has a PPP device, while cable
normally does not have any PPP.

Read the docs to further restrict your firewall.

I don't however get where the sysctl error is. Can you help me?

Costa


John Zastrow said:
> Howdy,
>
> I've got the classic situation: eth0 on the linux box
> connected to a cable modem with dynamic IPs. eth1
> points to the internal network, which is currently one
> machine. That machine gets its IP from dhcpd and sees
> eth1 (192.168.1.1) as its gateway. Linux box is
> running Redhat8.
>
> I would like to route to the internal machine full
> access to the linux box and internet, so I tried the
> firehol stock home_adsl config as a start (though I
> had to change the path for sysctl to /sbin/sysctl to
> stop firehol from complaining).
>
> Now the linux box sees the internet just fine through
> eth0. The internal box is getting its IP and I can ssh
> into the linux through eth1 just fine. But, the
> internal machine cannot see the internet. I also tried
> working through the tutorial config, but that didn't
> either.
>
> Nothing seems to be complaining, so it's obviously a
> config problem. Where do I start troubleshooting this?
>  The troubleshooting section is a little lite in this
> regard.
>
> TIA,
> -John
>
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
> http://mailplus.yahoo.com
>
>
> -------------------------------------------------------
> This SF.NET email is sponsored by:
> SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
> http://www.vasoftware.com
> _______________________________________________
> Firehol-support mailing list
> Firehol-support at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/firehol-support

More information about the Firehol-support mailing list