<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=ISO-8859-1">
<META content="MSHTML 6.00.2719.2200" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Tony and all.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Thanks for your advice, and response. I tried
your method, however that cut all links outside.</FONT></DIV>
<DIV><FONT face=Arial size=2>echo " FWD: Allow all connections OUT
and only existing and related ones IN"<BR>$IPTABLES -A FORWARD -i $EXTIF -o
$INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT<BR>$IPTABLES -A FORWARD -i
$INTIF -o $EXTIF -j ACCEPT<BR></FONT></DIV>
<DIV><FONT face=Arial size=2>i read the file and duplicated the above two lines
replacing $intif with eth2 [the wireless card]</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>my adsl modem is a dlink with bult in client set at
192.168.0.1 the nic its connected to is dhcp from the modem and changes to
outside ip like a ppp link would work. i found it easyier for routing to have
local lan nic as 192.168.1.1 and wireless as 192.168.2.1.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>with the setup now its all working
100%</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Thanks</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=tlangdon@atctraining.com.au
href="mailto:tlangdon@atctraining.com.au">Tony Langdon</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=mhill@satlink.com.au
href="mailto:mhill@satlink.com.au">'Matthew Hill'</A> ; <A
title=melbwireless@wireless.org.au
href="mailto:melbwireless@wireless.org.au">melbwireless@wireless.org.au</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, November 18, 2002 2:57
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> RE: [MLB-WIRELESS] ot a
bit</DIV>
<DIV><BR></DIV>
<DIV><FONT face=Arial size=2>echo " External Interface: $EXTIF"<BR><BR>echo "
Internal Interface: $INTIF"<BR><BR>eth0 being the adsl link eth1 being the
first internal net. i want to =<BR>add something like initif=3Deth2 as well to
put masq onto both internal =<BR>nets ??? any ideas<SPAN
class=783295403-18112002><FONT color=#0000ff> </FONT></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=783295403-18112002></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=783295403-18112002><FONT
color=#0000ff>You just need to ensure that the address range 192.168.2.0/24 is
included in the range of source addresses for MASQ. It's a pity you
chode 192.168.1.x and 192.168.2.x, as these don't aggregare as well as
192.168.0.x and 192.168.1.x</FONT></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=783295403-18112002></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=783295403-18112002><FONT
color=#0000ff>For the ranges you've got, duplicate the iptables line
which ends in -j MASQ, and change the source address of the second
one (-s 192.168.2.0/24).</FONT></SPAN></FONT></DIV>
<DIV><SPAN class=783295403-18112002></SPAN><FONT face=Arial><FONT size=2><SPAN
class=783295403-18112002><FONT
color=#0000ff></FONT></SPAN></FONT></FONT> </DIV>
<DIV><FONT face=Arial><FONT size=2><SPAN class=783295403-18112002><FONT
color=#0000ff>Hope that makes sense. Don't have iptables in front of me
atm...</FONT></SPAN></DIV></FONT></FONT><BR>
<P><FONT size=2>---<BR>Outgoing mail has been scanned for Viruses<BR>Checked
by AVG anti-virus system (http://www.grisoft.com).<BR>Version: 6.0.417 / Virus
Database: 233 - Release Date: 8/11/2002<BR></FONT></P><BR>
<P><FONT face=Arial size=2>This correspondence is for the named person's use
only. It may contain confidential or legally privileged information or both.
No confidentiality or privilege is waived or lost by any mistransmission. If
you receive this correspondence in error, please immediately delete it from
your system and notify the sender. You must not disclose, copy or rely on any
part of this correspondence if you are not the intended
recipient.</FONT></P><BR>
<P><FONT face=Arial size=2>Any opinions expressed in this message are those of
the individual sender.</FONT></P><BR></BLOCKQUOTE></BODY></HTML>