echo 1 > /proc/sys/net/ipv4/ip_forward
/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
/sbin/iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
/sbin/iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT
The line with “–state” caused iptables to return an error to the tune of “iptables: No chain/target/match by that name”. How useless. I needed to compile some additional kernel modules. If I get motivated, maybe I’ll figure out precisely which modules need to be enabled and post it. Usually I’m so furious by this point that I go on an enabling frenzy, so I can never be sure just which modules did the trick.