[问题求助]求助：关于linux双网卡转发问题 [复制链接]

linu.x机器配置网络转发功能，在shell下执.行：.
e.cho 1>/proc/sys/net/ipv4/.ip_forward.
iptables -t nat -.A POSTROUTIN.G -s 10.110..10.20/24 -o wlan0 -j SNAT --to 192.168.1.101           女人

wla..n0网卡对外网，IP为192.168.1.101.
eth0网卡对内网，IP 为10.11.0.10.1.0.

内网windows机器IP为10.110.10.20，网关设为.10.110.10.1.0域名
w..indows机器无法上网，请大侠帮忙看看有啥问题，多谢！.

-s 10.110.10.20/24 写法不对吧,看着别扭
写成-s 10.110.10.0/24 看看

改了
iptables -t nat -A POSTROUTING -s 10.110.10.0/24 -o wlan0 -j SNAT --to 192.168.1.101

还是不行

两台机器可以相互ping通
linux机器是通过无线宽带路由器上网的，没有影响吧

目前配置如下，请大家帮忙看看，急

[root@localhost work]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination        
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     icmp --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:ssh
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination        
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination        
[root@localhost work]# iptables -L -t nat
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination        

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination        
SNAT       all  --  10.110.10.0/24       anywhere            to:192.168.1.101

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination        
[root@localhost work]# ifconfig
eth0      Link encap:Ethernet  HWaddr 00:23:54:05:2C0  
          inet addr:10.110.10.10  Bcast:10.255.255.255  Mask:255.0.0.0
          inet6 addr: fe80::223:54ff:fe05:2cd0/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:1239 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1068 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:108457 (105.9 KiB)  TX bytes:114539 (111.8 KiB)
          Interrupt:19 Base address:0x6000

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:12 errors:0 dropped:0 overruns:0 frame:0
          TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:800 (800.0 b)  TX bytes:800 (800.0 b)

wlan0     Link encap:Ethernet  HWaddr 00:23:4D:1A7:EA  
          inet addr:192.168.1.101  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::223:4dff:fe1a:d7ea/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:4395 errors:0 dropped:0 overruns:0 frame:0
          TX packets:5299 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:3022426 (2.8 MiB)  TX bytes:1037103 (1012.7 KiB)

wmaster0  Link encap:UNSPEC  HWaddr 00-23-4D-1A-D7-EA-F4-8F-00-00-00-00-00-00-00-00  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)

[root@localhost work]#

--to 192.168.1.101换成192.168.1.102看看

还是不行啊，郁闷

QUOTE:Chain FORWARD (policy ACCEPT)
target     prot opt source               destination        
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited

iptables -F下看看

试了，还是不行

我的linux版本是fedora10
我用ethereal监视了一下，感觉windows请求到了eth0网卡，但没到wlan0，似乎linux转发功能没有起作用