which iptables command to run firefox behind a linux router?

one of my PC is a linux router. its name is 'rato'. the ip adress of the router are :
192.168.3.4, 192.168.4.4, 192.168.5.4, 192.168.6.4, 192.168.6.4,192.168.9.4
on this router, 'route' give:
[root@rato etc]# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.6.0     0.0.0.0         255.255.255.0   U     0      0        0 eth3
192.168.5.0     0.0.0.0         255.255.255.0   U     0      0        0 eth2
192.168.4.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
192.168.3.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
192.168.9.0     0.0.0.0         255.255.255.0   U     0      0        0 eth6
0.0.0.0         192.168.3.3     0.0.0.0         UG    0      0        0 eth0
on this router, 'iptables' give:
[root@rato etc]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
[root@rato etc]#
on the router 'rato', I can run firefox and acces to internet thru adsl thru the net 192.168.3.0.
I would like to be able to access to internet thru firefox on any pc of the net 192.168.5.0
what are the iptables commands to be able to run firefox from any pc of the 192.168.5.0?
for instance, I want to run firefox on the 192.168.5.162 ? which iptable should I type on the router?


gdmoAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

mianniCommented:
How do you actually exit your network to reach the internet ?
As all of your interfaces are (RFC1918), there is no internet connection.

All the same check the config file:

cd /etc/sysconfig/iptables
mianniCommented:
Actually I just noticed, your default gateway is 192.168.3.3 !!!
Then you will probably need to check that ip_forwarding is turned on and also check the file I mentioned above.
Another thing will be routing back to your rato firewall, either on the router 192.168.3.3 you will need to route the other subnets back or you will need to configure masquerading.
gdmoAuthor Commented:
Yes, the gateway 192.168.3.3 is a adsl modem-router. But, for some reasons, I want to use un linux router and not a adsl modem-router. The reasons are that I want to have separate subnets.
As far as I know, to configure masquerading, I will need to configure iptables on the 'rato' router. As I have not yet used iptables, I have not yet well understood iptables. I would like than somebody say which command iptables are to be used.
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

mianniCommented:
check out this link:
http://www.siliconvalleyccie.com/linux-hn/iptables-intro.htm

you will need to work out exactly what you want to do with the traffic and then apply it into a file.
If you want further information explain in detail what you want to achieve eg: source destination traffic flows, who sees who, etc..
gdmoAuthor Commented:
I know exactly the result that I expect to obtain. But, unfortunately, I do not know the iptables commands I must write to obtain what I want.  I just want that a pc under linux whom ip adress is 192.168.5.162 could acces web by firefox.
mianniCommented:
You don't actually need to run iptables for you to browse the internet.
1. turn on ip_forwarding
2. set routes on your adsl router for subnets (192.168.4.0, 192.168.5.0, 192.168.6.0, 192.168.6.0,192.168.9.0) via 192.168.3.4

All your traffic will go through RATO as it now acts as a router.

If you wish to setup iptables fIrewall, then I suggest you have a good read of the link above.

For a quick fix you can check out this sample iptables file and modify as required:

http://www.liniac.upenn.edu/sysadmin/security/iptables.html
 

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking Protocols

From novice to tech pro — start learning today.