在A主機的Fedora core6系統上,以兩張網路卡及1個public IP架設
NAT Server,利用B主機,可順利ping到A主機的兩個pubic/private
IP,A也能Ping到B,但B卻無法透過A主機對外連線。
以下為相關設定值
------------------------------------------------------------------
A主機
/etc/rc.d/rc.local
iptables -A INPUT -i eth0 -j ACCEPT
echo "1" > /proc/sys/net/ipv4/ip_forward
modprobe ip_tables
modprobe ip_conntrack
modprobe ip_conntrack_irc
iptables -t nat -A POSTROUTING -o eth1 -s 192.168.1.0/24 -j MASQUERADE
ifconfig
...(略)
eth0 inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
eth1 inet addr:124.6.21.239 Bcast:124.6.21.255 Mask:255.255.255.0
...(略)
/etc/sysctl.conf
.....(略)
# Controls IP packet forwarding
net.ipv4.ip_forward = 1
.....(略)
------------------------------------------------------------------
B主機
ip address:192.168.1.5
subnet mask:255.255.255.0
------------------------------------------------------------------
參考過的網路文章
http://www.study-area.net
http://linux.vbird.org/linux_server/0250simple_firewall.php
