|
|
ВНИМАНИЕ: Използвайте форумите на сайта за дa зададете вашите въпроси.
Въпрос |
От: zap |
Дата: 03/27/2003 |
Opitvam se da napravia NAT s linux read hat 7.3 ( kakto si
e) i iptables.
puskam :
[root@tgate root]# iptables -t nat -A POSTROUTING -s
192.168.71.0/24 -d 0/0 -j MASQERADE
i resultata e :
/lib/modules/2.4.18-3/kernel/net/ipv4/netfilter/ip_tables.o:
init_module: Device or resource busy
Hint: insmod errors can be caused by incorrect module
parameters, including invalid IO or IRQ parameters
/lib/modules/2.4.18-3/kernel/net/ipv4/netfilter/ip_tables.o:
insmod
/lib/modules/2.4.18-3/kernel/net/ipv4/netfilter/ip_tables.o
failed
/lib/modules/2.4.18-3/kernel/net/ipv4/netfilter/ip_tables.o:
insmod ip_tables failed
iptables v1.2.5: can't initialize iptables table `nat':
iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
[root@tgate root]#
kade moje da e problema?
ne razbiram mnogo ot linux, no sam chel che e super za
takiva raboti.
Do sega sam polzval novell (raboti izkliuchitelno stabilno i
se nastroiva mnogo lesno) za sastata cel i toi si raboti
dobre, no v novata mreja iskam da mina kam linux.
10x.
|
Отговор #1 |
От: Djimbo (kvv__at__atsoftconsult-bg< dot >com) |
Дата: 03/27/2003 |
1. service ipchains stop
2.chkconfig --level 3 ipchains off
2.chkconfig --level 4 ipchains off
2.chkconfig --level 5 ipchains off
2.chkconfig --level 3 iptables on
2.chkconfig --level 4 iptables on
2.chkconfig --level 5 iptables on
3. depmod -a
4. insmod ip_tables
4. insmod ip_conntrack
4. insmod ip_conntrack_ftp
4. insmod ip_conntrack_irc
4. insmod iptable_nat
4. insmod ip_nat_ftp
5.iptables -L -xvn
6.iptables -t nat -A POSTROUTING -s 192.168.71.0/24 -d 0/0 -
j MASQERADE
7.Savetvam te da si napravish edin script koito da si
startirash pri zarejdane na systemata
|
Отговор #2 |
От: zap |
Дата: 03/27/2003 |
Probvah saveta.
Resultata e:
[root@tgate root]# service ipchains stop
Flushing all chains: [
OK ]
Removing user defined chains: [
OK ]
Resetting built-in chains to the default ACCEPT policy: [
OK ]
[root@tgate root]# chkconfig --level 3 ipchains off
[root@tgate root]# chkconfig --level 4 ipchains off
[root@tgate root]# chkconfig --level 5 ipchains off
[root@tgate root]# chkconfig --level 3 iptables on
[root@tgate root]# chkconfig --level 4 iptables on
[root@tgate root]# chkconfig --level 5 iptables on
[root@tgate root]# depmod -a
[root@tgate root]# insmod ip_tables
Using
/lib/modules/2.4.18-3/kernel/net/ipv4/netfilter/ip_tables.o
/lib/modules/2.4.18-3/kernel/net/ipv4/netfilter/ip_tables.o:
init_module: Device or resource busy
Hint: insmod errors can be caused by incorrect module
parameters, including invalid IO or IRQ parameters
[root@tgate root]#
|
Отговор #3 |
От: Никола Антонов (linux __@__ logos__dot__goto__dot__bg) |
Дата: 03/27/2003 |
Нормално е да ти дава това, защото модулите на ipchains още
са в паметта. По-добре рестартирай, защото иначе трябва да
си играеш с rmmod, преди да ползваш insmod или по-доброто -
modprobe.
|
Отговор #4 |
От: user |
Дата: 03/27/2003 |
ami tova koeto vijdam na pryv pogled e che pishesh MASQERADE
vmesto MASQUERADE.
|
Отговор #5 |
От: zap |
Дата: 03/27/2003 |
Sled restart ne dava greshki(oste ne znam dali raboti).
Triabva li mi niakakav script ili komandata:
iptables -t nat -A POSTROUTING -s
192.168.71.0/24 -d 0/0 -j MASQUERADE
e ednokratna?
Ako mi triabva script kade da go sloja i s kakvi prava da se
izpalniava?
|
Отговор #6 |
От: zap |
Дата: 03/27/2003 |
Sega veche probvah i ot druga mashina ( win98)
i razbira se ne raboti.
Moga da naprawia ping go linux-a i nisto izvan nego.
Kato pusna trace oste na parwia red dava reuest timeout ( 3
x *) i taka do kraia.
Ima li nachin da proveria kade sam obarkal nesto?
|
Отговор #7 |
От: Djimbo (kvv (a) atsoftconsult-bg[ точка ]com) |
Дата: 03/27/2003 |
Of choveche ti ne si zapozat mai izobshto s neshtata
napravi slednoto:
cat /proc/sys/net/ipv4/ip_forward ako stoinosta ti e 0
znachi ne si razreshil forwardinga na paketite
za chelta pravish tova
echo "1" > /proc/sys/net/ipv4/ip_forward
Shto se otnasq do iptables komandata e ednokratna dokato
systemata ne ti se rebootne sled tova vsichko na novo
pishesh za tva ti dadoh ideqta da si napravsh skript :
za tvoe ulesnenie che ti papisha edin pomesti go v
/etc/rc.local
#!/bin/sh
#
# This script will be executed *after* all the other init
scripts.
# You can put your own initialization stuff in here if you
don't
# want to do the full Sys V style init stuff.
touch /var/lock/subsys/local
##Enable Forwarding
echo -en " Enabling forwarding..."
/bin/echo "1" > /proc/sys/net/ipv4/ip_forward
echo " .Done."
echo -e " Loading modules, "
/sbin/depmod -a
echo -en "ip_tables, "
/sbin/insmod ip_tables
echo " .Done."
echo -en "ip_conntrack, "
/sbin/insmod ip_conntrack
echo " .Done."
echo -en "ip_conntrack_ftp, "
/sbin/insmod ip_conntrack_ftp
echo " .Done."
echo -en "ip_conntrack_irc, "
/sbin/insmod ip_conntrack_irc
echo " .Done."
echo -e "iptable_nat, "
/sbin/insmod iptable_nat
echo "Done."
echo -en "ip_nat_ftp, "
/sbin/insmod ip_nat_ftp
echo " .Done."
echo ". Done loading modules."
##Enabling Iptables
echo -en " Restoring Iptables rules..."
/sbin/iptables-restore < /root/iptables
echo " .Done"
za da ti e validno tva pravilo si zapishi vsichki pravila v
edin file v sluchaq iptables posredstvom komandata
iptables-save > /root/iptables
Ako ne ti e qsno neshto dai SSH Shell za da ti go napravq
|
Отговор #8 |
От: zap |
Дата: 03/27/2003 |
Opravi se!
Pone kato pusna ping prez win-mashinata raboti.
Ostanalite protokoli ste gi probvam sega.
Blagodaria za pomostta.
|
<< reboot HELP (6
) | d4x (2
) >>
|
|
|
|
|