Hi All,

I am setting up a tunnel according to the thomer.com/howtos/nstx.html guide.

Thus far, my proxy and client can ping each other, but nothing more. I think that there is a problem with my iptables configurations, but I'm not sure what. Would be great if someone could offer some insight. Here is the script I'm using

nstxd tunnel.eschatonabroad.info &> /tmp/nstx.log &
ifconfig tun0 172.16.16.1 netmask 255.255.255.0 up
modprobe ipt_MASQUERADE
#modprobe ipt_state

# flush all tables
iptables -F; iptables -t nat -F; iptables -t mangle -F

# tunnel related, nat stuff?
#iptables -t nat -A POSTROUTING -s 172.16.16.0/24 -j MASQUERADE

# enable ip fowarding (routing)
echo 1 > /proc/sys/net/ipv4/ip_forward

# enable free use of loopback interfaces
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT

# let certain traffic in
iptables -A INPUT -p udp --dport 53 -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -m state --state NEW -i ! eth0 -j ACCEPT
iptables -A INPUT -p icmp --icmp-type 0 -j ACCEPT
iptables -A INPUT -p icmp --icmp-type 8 -j ACCEPT

# b/c of my static IP
iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to 123.123.123.123

# forward from outside to inside
# iptables -A FORWARD -i eth0 -o eth0 -j REJECT


Thanks for any help