On Apr 6, 2005 3:00 PM, Henry Hartley <henryhartley@xxxxxxxxxx> wrote: > On Wed, 06 Apr 2005 at 12:43 PM David Hoffman said: > This turns out to have been much easier than I expected. First, put > the private IP address in /etc/hosts > > 192.168.0.2 ppp1 > > Then, make sure /etc/ppp/options.ttyS0 has this in it (with the real > domain name): > > mydomain.com:ppp1 > > Finally, be sure iptables will not get in the way with this section: > > # nat the private network addresses used for dhcp > *nat > :PREROUTING ACCEPT [566:30646] > :POSTROUTING ACCEPT [799:50552] > :OUTPUT ACCEPT [799:50552] > -A POSTROUTING -s 192.168.0.0/255.255.255.0 -j MASQUERADE > COMMIT > > and of course reload the running iptables with: > > iptables-restore /etc/sysconfig/iptables > > And it works. I don't need DHCP at all, it seems. Okay, I admit, I There you go... that pretty much covers the details of the steps that I was talking about. Using MASQUERADE sets up NAT routing to the new private subnet, and your dial-up users will get a 192.168.x.x address instead of a real address. Sounds like you have it working.
