Internet Connection sharing with dhcp

[Guest user101]

Hello,

I followed this how to to setup internet connection sharing between linux and windows, linux being the computer connected to the internet, but I couldn't get it to work.

Windows to windows sharing, however, works fine and so does windows to linux.

 

I have a cable modem so I used dhcp and am using mandrake 10.1.b2.

The ipaddress of the ethernet card that connects one machine to to other is 192.168.0.1

Below I will copy and paste my config files.

Below is the config file for the card that is connected to the internet.

-------------------------/etc/sysconfig/network-scripts/ifcfg-eth0------------------------------------

 

DEVICE=eth0

BOOTPROTO=dhcp

ONBOOT=yes

MII_NOT_SUPPORTED=no

NEEDHOSTNAME=yes

-----------------------------------------------------------

card used for sharing connection

---------------------/etc/sysconfig/network-scripts/ifcfg-eth1--------------------------------------

etc/syDEVICE=eth1

BOOTPROTO=static

IPADDR=192.168.0.1

NETMASK=255.255.255.0

NETWORK=192.168.0.0

BROADCAST=192.168.0.255

ONBOOT=yes

MII_NOT_SUPPORTED=yes

-----------------------------------------------------------

 

I don't have a resolve.conf

 

-------------/etc/sysconfig/network:-----------

 

NETWORKING=yes

FORWARD_IPV4=true

GATEWAY=192.168.0.1

-----------------------------------

Posting the first couple of lines from /etc/sysctl.conf.

I didn't need to add net.ipv4.ip_forward = 1 as it was already added, I just changed it from 0 to 1.

----------/etc/sysctl.conf-----------------

 

# Controls IP packet forwarding

net.ipv4.ip_forward = 1

# Disables IP dynaddr

net.ipv4.ip_dynaddr = 0

# Disable ECN

net.ipv4.tcp_ecn = 0

# Controls source route verification

net.ipv4.conf.default.rp_filter = 1

--------------------------------

 

And in /etc/rc.d/rc.local I added iptables -t nat -D PREROUTING -i eth0 -j loc_dnat.

 

So that is what I am done so far and I can't get internet connection sharing to work.

Any suggestions would be appreciated.

thanks,

--user101

[flightcrank]

yeah do what i did a few threds down down, im a linux noob and it worked for me and it seems we have a similer setup. just remember u need 2 network cards one for internet(eth0) and one to share it with the rest of your lan (eth1)

[flightcrank]

oh u do have 2 network cards, im a idiot :P

[Guest user101]

Hey,

Thanks for the help, my connection works now.

I guess it was the firewall settings that were getting in the way.

 

--user101

[Guest user101]

Hey,

After doing what you said I did a security can at scan.sygate.com and according to it all of my ports are closed, not blocked anymore, except dns and icmp.

Anyway to get everything to be blocked without breaking interent sharing?

Even the windows firewall blocks everything.

 

--user101

[flightcrank]

what do u mean, whats the diffrence between closed and blocked

[flightcrank]

ok now got got me all worried ;(

 

to all the linux guru's what ports should and shouldnt we have open,closed,or blocked ?

[Guest user101]

Ideally your port should be "Blocked." This indicates that your ports are not only closed, but they are completely hidden (stealthed) to the world.

Closed means that they are not hidden and can be scanned to figure out which type of attack to carry out.

and open....

[flightcrank]

but how can u have all ports blocked ? how are u supposed to acess the world wide web, or set up a ftp server ect