- 论坛徽章:
- 0
|
现在网关服务器可以上网,但是下面的客户机不可以上网,但是能PING通网关(192.168.10.1)具体配置如下:
[root@localhost ~]# rpm -Uvh rp-pppoe-3.5-1.i386.rpm
[root@localhost ~]# adsl-setup
Welcome to the ADSL client setup. First, I will run some checks on
your system to make sure the PPPoE client is installed properly...
LOGIN NAME
Enter your Login Name (default root): 输入ADSL帐号的用户名
INTERFACE
Enter the Ethernet interface connected to the ADSL modem
For Solaris, this is likely to be something like /dev/hme0.
For Linux, it will be ethX, where 'X' is a number.
(default eth0): eth0输入 eth0 ,这是ADSL相连的网卡的名字
Do you want the link to come up on demand, or stay up continuously?
If you want it to come up on demand, enter the idle time in seconds
after which the link should be dropped. If you want the link to
stay up permanently, enter 'no' (two letters, lower-case.)
NOTE: Demand-activated links do not interact well with dynamic IP
addresses. You may have some problems with demand-activated links.
Enter the demand value (default no): no设置是否按需拨号,对于我们用户来说,设为永久在线比较好!输入:no即可
DNS
Please enter the IP address of your ISP's primary DNS server.
If your ISP claims that 'the server will provide dynamic DNS addresses',
enter 'server' (all lower-case) here.
If you just press enter, I will assume you know what you are
doing and not modify your DNS setup.
Enter the DNS information here: 202.106.0.20输入 "202.106.0.20" ,这表示使用ADSL拨号北京的DNS服务器IP地址
Please enter the IP address of your ISP's secondary DNS server.
If you just press enter, I will assume there is only one DNS server.
Enter the secondary DNS server address here:
PASSWORD
Please enter your Password: 输入ADSL帐号的密码
Please re-enter your Password: 输入ADSL帐号的密码
USERCTRL
Please enter 'yes' (two letters, lower-case.) if you want to allow
normal user to start or stop DSL connection (default yes): yes 设置是否允许一般用户连接和断开ADSL连接。我们输入:no
FIREWALLING
Please choose the firewall rules to use. Note that these rules are
very basic. You are strongly encouraged to use a more sophisticated
firewall setup; however, these will provide basic security. If you
are running any servers on your machine, you must choose 'NONE' and
set up firewalling yourself. Otherwise, the firewall rules will deny
access to all standard servers like Web, e-mail, ftp, etc. If you
are using SSH, the rules will block outgoing SSH connections which
allocate a privileged source port.
The firewall choices are:
0 - NONE: This script will not set any firewall rules. You are responsible
for ensuring the security of your machine. You are STRONGLY
recommended to use some kind of firewall rules.
1 - STANDALONE: Appropriate for a basic stand-alone web-surfing workstation
2 - MASQUERADE: Appropriate for a machine acting as an Internet gateway
for a LAN
Choose a type of firewall (0-2): 0输入 2 ,0不使用防火墙,2使用
Start this connection at boot time
Do you want to start this connection at boot time?
Please enter no or yes (default no):yes
设置系统启动后,是否自动进行ADSL拨号链接。对于家庭用户当然最好输入yes,不过,我们为了测试期间,可以输入no 以后再更改/etc/rc.d/rc.local 文件,在里面加入 adsl-start。
** Summary of what you entered **
Ethernet Interface: eth0
User name:
Activate-on-demand: No
Primary DNS: 202.106.0.20
Secondary DNS: server
User Control: yes
Accept these settings and adjust configuration files (y/n)? y 如果输入的信息正确,输入 y ,完成配置,否则,输入 n 重新输入。
Adjusting /etc/sysconfig/network-scripts/ifcfg-ppp0
Adjusting /etc/resolv.conf
(But first backing it up to /etc/resolv.conf.bak)
Adjusting /etc/ppp/chap-secrets and /etc/ppp/pap-secrets
(But first backing it up to /etc/ppp/chap-secrets.bak)
(But first backing it up to /etc/ppp/pap-secrets.bak)
Congratulations, it should be all set up!
Type '/sbin/ifup ppp0' to bring up your xDSL link and '/sbin/ifdown ppp0'
to bring it down.
Type '/sbin/adsl-status /etc/sysconfig/network-scripts/ifcfg-ppp0'
to see the link status.
在/etc/rc.d/rc.local文件里设置
#vi /etc/rc.d/rc.local
echo "1" >/proc/sys/net/ipv4/ip_forward
$IPTABLES -P INPUT ACCEPT
$IPTABLES -P OUTPUT ACCEPT
$IPTABLES -P FORWARD ACCEPT
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE |
|