[rescue] Putting an insecure machine on a network
Ron Wickersham
rjw at alembic.com
Tue Mar 21 19:43:25 CST 2006
On Tue, 21 Mar 2006, Sheldon T. Hall wrote:
> Insecure laptop on 10.10.10.2, connected to
> Sun's hme0 on 10.10.10.1, in the same box as
> Sun's le0 on 192.168.0.20, which is on a LAN with
> Gateway to 'net on 192.168.0.1.
>
> [Now hear de word o de lawd!]
>
> The laptop can ping 10.10.10.1 and 192.168.0.20 ("far side" of Sun box), but
> not anything else on 192.168.0.0/24. Laptop cannot ping 192.168.0.1. No
> ipfilter rules are in place, the ipf.conf file is all comments.
>
> I'm obviously missing something, but what?
hi Shel,
something like
iptables -t nat -A POSTROUTING -o hme0 -j SNAT --to-source 192.168.0.1
(hope i got the details right)
-ron
More information about the rescue
mailing list