Categories
Tags
Authors
Teams
Archives
Categories:   All Categories
Suggested keywords
x

Creating Ubuntu 18.04 Masquerade

1922 Hits
network-masquerading

Prerequisites

  • Ubuntu 18.04.5 Installed
  • Updated Operating to current patch level
  • Both iptables-persistent & netfilter-persistent packages

System Details 

  • Ubuntu 18.04.5
  • Internet interface: eno1
  • Ubuntu 18.04.5 IP Address: 10.160.5.107 <-- we use the host IP as the gateway on all clients wanting Internet.

Update Ubuntu 18.04 

Configuration 

Edit /etc/sysctl.conf and insert the line below for IP forwarding 

Add below line inside sysctl.conf like example below 

net.ipv4.ip_forward=1

Apply the settings by typing the below command 

Startup Requirements 

You must have an idea of which interfaces you want to route traffic through for the masquerade.

Please see command below for Masquerade Command reference.

Installing Software 

Install the software by typing below commands 

Masquerade Commands 

The server or machine that will provide internet to other client machines. The active interface we specified below is where the host get it's active Internet from which is eno1 interface.

iptables -t nat --append POSTROUTING --out-interface eno1 -j MASQUERADE
iptables --append FORWARD --in-interface eno1 -j ACCEPT

You can usually find the active internet interface by using the route command with the -n switch. The example below shows gateway is 192.168.0.1 using interface eno1 just like we have in our iptables commands above. 

Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         192.168.0.1     0.0.0.0         UG    600    0        0 eno1
10.158.254.0    0.0.0.0         255.255.255.0   U     0      0        0 pan1
172.16.111.0    0.0.0.0         255.255.255.0   U     0      0        0 vmnet8
192.168.0.0     0.0.0.0         255.255.255.0   U     600    0        0 eno1
192.168.64.0    0.0.0.0         255.255.255.0   U     0      0        0 vmnet1
192.168.122.0   0.0.0.0         255.255.255.0   U     0      0        0 virbr0

Save & Apply iptable rules 

Enable the rules during startup using below command for every boot. 

Client Machine Setup

The client machine is the machine on the same network as the masqueraded server machine that needs access through the host machine to get Internet.

The below netplan configuration is an example of how you should setup IPv4 gateway.

# This is the network config written by 'subiquity'

network:
  version: 2
  ethernets:
    ens3:
      dhcp4: true
    ens9:
      dhcp4: no
      gateway4: 10.160.5.107
      addresses:
              - 192.168.0.5/24
      nameservers:
              addresses: [1.1.1.1, 1.0.0.1]

The above netplan example shows we specified the gateway4: parameter with the hosts IP as the gateway. 

How do you feel about this post?
Happy (0)
Love (0)
Surprised (0)
Sad (0)
Angry (0)
Tags:
Linux Managing Linux Ubuntu 18.0.4.5 MASQ Masquerade Internet Sharing
Font size: +
Report Print

By accepting you will be accessing a service provided by a third-party external to https://www.klokur.com/