Sharing connection - IPTABLES

networking server internet iptables
6,833

edit /etc/sysctl.conf and uncomment:

# net.ipv4.ip_forward=1

And the iptables part should look something like below, where eth0 is internet and eth1 is LAN:

iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE

iptables -A FORWARD -i eth1 -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT

iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT

If you have 2 physical network interfaces in server then it should work, you cant use your server as internet gateway if it only has 1 physical interface

Share:
6,833

Related videos on Youtube

Luck20
Author by

Luck20

Updated on September 18, 2022

Comments

  • Luck20
    Luck20 over 1 year

    I've been trying to configure IPTABLES in my server so I can share the internet from the server with another machine. The server IP is 192.168.10.1 (eth0), the connection is coming from 192.168.0.6 (eth0:2), the client is 192.168.10.10 (eth1 in the machine). I've tried using the commands from

    https://help.ubuntu.com/community/Internet/ConnectionSharing

    with the correct changes, but I can't make it work, the client can ping 192.168.0.1 (where the internet is coming from), but it can't access the internet at all.

    Server:

    eth0 192.168.10.1 eth0:2 192.168.0.6 Currently has connection with both the client and the internet

    Router:

    192.168.0.1

    Client:

    eth1 192.168.10.10 Can ping both the router and the server

    • cafebabe1991
      cafebabe1991 almost 8 years
      The questions seems quiet confusing. Are you talking about connecting to each other over ssh or just opening a port on your system so others can connect to it?
    • Luck20
      Luck20 almost 8 years
      Sorry, linked the wrong page, the correct one is help.ubuntu.com/community/Internet/ConnectionSharing
  • Luck20
    Luck20 almost 8 years
    Yes, I only have one physical interface, now I'm aware of the problem, thanks.
  • Gillespie
    Gillespie about 4 years
    Are you sure you don't mean iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE? Otherwise you are NATing packets going into the private LAN, not coming out of it
  • s.paszko
    s.paszko about 4 years
    iptables v1.6.1: unknown option "state"

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How can we make our ubuntu server router as gateway mode to router mode?
Correct way to masquerade IP in iptables
How to configure iptables file to allow only specific ipaddress on all port and deny all other ipaddress?
Why can't I access internet through static IP set-up Ubuntu Server 14.04?
Can't ssh into server, connection refused
How to check if there is internet access ? and how to connect to eth0 and wlan0 in Ubuntu Server
Issue with setting up multiple IP addresses on Ubuntu Server
How can I make my tftp server visible/available on my local network?
Wired internet connection is very slow on Ubuntu 16.04.03 LTS
ssh: connect to host 192.168.57.1 port 22: Connection refused lost connection