On Sat, 07 Jul 2001 04:51:16 -0400, tvn1981 staggered into the Black Sun
Quote:>With many strugglings, I finally got nfs working - I had to uninstall
>ipchains because it somehow block the nfs from working. I don't know
>how to configure ipchains yet - it seems too complicated and I don't
>need that much.
You need to configure ipchains to allow a range of UDP ports for the
Nightmare File System to work correctly. You should check the
ipchains-HOWTO at http://linuxdoc.org/HOWTO/ .
Quote:>My next question is how to share internet connection((dial up) btw my 2
>computers ? both running linux. I read the howto doc but it requires
>DHCP and IP Masquerading --- I don't think I have those. Is there any
>easier way ?
DHCP is not required, but IP Masqing *IS*. This is much simpler than
you're making it out to be--you sure you read the HOWTO and followed the
directions step-by-step? It's like so, assuming that you have your
machines in the 192.168.x.x private address space:
# this is necessary
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "1" > /proc/sys/net/ipv4/ip_always_defrag
# Load the module for masqued FTP
# Do the ipchains rulesets
/sbin/ipchains -M -S 7200 10 60
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -i eth0 -s 192.168.0.0/16 -j MASQ
Put those in your /etc/init.d/boot.local or create an
/etc/init.d/firewall script. Have the machine that's attached to the
modem run this script. Other machines on your LAN that need to access
the modem should have their IPs in the 192.168.0.0 range. This ipchains
set provides *NO* security at all.
Finally, if both machines are trying to do anything bandwidth-intensive
at the same time, the throughput's gonna be horrible. But you knew
Matt G|There is no Darkness in Eternity/But only Light too dim for us to see
Brainbench MVP for Linux Admin / That which does not kill us
http://www.brainbench.com / makes us stranger.
-----------------------------/ --Trevor Goodchild, "AEon Flux"