Life Journey

Aduuh…. ini Router kok belom bisa konek ke internet ya?

padahal

Ping ke eth0 => IPADDR=192.168.a.x bisa sukses

Ping ke eth1 => IPADDR=192.168.b.x juga sukses

Tapi ping ke Gateway ama DNS nya belom bisa.

Gateway nya 192.168.1.254

Padahal IP Gateway ama DNS uda gw set. Dan Routing nya juga sudah.

udah dicoba juga set iptables-nya

Apa ya yg menyebabkan?

Ini beberapa Rules yg gw isi di Mesin CentOS-4 Server.

$IPTABLES --table nat --append POSTROUTING --out-interface eth1
--source 192.168.1.111 --jump SNAT --to-source 192.168.1.254

$IPTABLES --table filter --append FORWARD
--in-interface eth1--out-interface eth1 --proto tcp --syn --destination 192.168.1.111
--destination-port 80 --jump ACCEPT

$IPTABLES --table filter --append FORWARD
--in-interface eth0--out-interface eth1 --proto tcp ! --syn --source 192.168.1.111
--source-port 80 --jump ACCEPT

$IPTABLES --table filter --append FORWARD --match state --state
ESTABLISHED,RELATED --jump ACCEPT

Kalo di Check

# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
RH-Firewall-1-INPUT  all  —  anywhere             anywhere

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
RH-Firewall-1-INPUT  all  —  anywhere             anywhere

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain RH-Firewall-1-INPUT (2 references)
target     prot opt source               destination
ACCEPT     all  —  anywhere             anywhere
ACCEPT     icmp —  anywhere             anywhere            icmp any
ACCEPT     ipv6-crypt–  anywhere             anywhere
ACCEPT     ipv6-auth–  anywhere             anywhere
ACCEPT     udp  —  anywhere             224.0.0.251         udp dpt:5353
ACCEPT     udp  —  anywhere             anywhere            udp dpt:ipp
ACCEPT     all  —  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     tcp  —  anywhere             anywhere            state NEW tcp dpt:ssh
ACCEPT     tcp  —  anywhere             anywhere            state NEW tcp dpt:http
ACCEPT     tcp  —  anywhere             anywhere            state NEW tcp dpt:ftp
ACCEPT     tcp  —  anywhere             anywhere            state NEW tcp dpt:smtp
REJECT     all  —  anywhere             anywhere            reject-with icmp-host-prohibited

Kalo ada yg tau, mungkin bisa bantu saya?

Thanks

Tags: CentOS, Computer, Linux, Networking, Server

This entry was posted on Saturday, March 22nd, 2008 at 6:40 am and is filed under Computer. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.