Sometimes I need a secondary gateway in my network, or simply want to provide Internet access for another device using my Linux box. The trick is simple, in this example, I am using a Raspberry Pi 4B with Rasbian 10 installation.

Configure the Interface used as LAN

Set the interface address to static and assign a network segment to it, in this example, 192.168.168.1 is assigned to eth0, with network mask 255.255.255.0.

(https://www.raspberrypi.org/documentation/configuration/tcpip/)[Raspberry Pi Document: TCP/IP networking]

edit /etc/dhcpcd.conf

interface eth0
static ip_address=192.168.168.1/24

Enable Forwarding

edit /etc/sysctl.conf

Add the following line:

net.ipv4.ip_forward=1

Enable Masquerading

Install iptables-persistent so the rules can persist between reboots.

sudo apt install iptables-persistent

edit /etc/iptables/rules.v4, assume wlan0 is the interface used to access the Internet.

*filter

# Firewall (Optional)
-A FORWARD -m state -–state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -i wlan0 -d 192.168.168.1/24 -j DROP

COMMIT


*nat

-A POSTROUTING -o wlan0 -j MASQUERADE

COMMIT

Use dnsmasq as DHCP server

Install with:

sudo apt install dnsmasq

edit /etc/dnsmasq.conf:

except-interface=wlan0
dhcp-range=192.168.168.100,192.168.168.254,255.255.255.0,3h

Author: Nobody

License: CC BY-NC-SA 4.0

Link: https://asdasd.page/2021/Make-a-Router-from-a-Linux-Box/