Page 2 of 2 FirstFirst 12
Results 11 to 14 of 14

Thread: iptables help on Linux

  1. #11
    Junior Member
    Join Date
    Jan 2002
    Posts
    7
    Thanks for all your replies - I have a ton of material to read through - I'll let you know around Easter time how I get on!

    Not sure whether I need NAT or Masquerade now - here's my setup:

    Internet --> [Cable Modem] --> [eth0|Linux box|eth1]-->[Hub]-->LAN

    Make sense? Pretty common setup, I think. I need all LAN machines to access internet resources, and I would like most server software on the Linux box - I want the ability to have certain server stuff in the LAN for testing purposes so would need NAT for that (masquerade?).

    Thanks - please clear up my confusion.

    Keymoo.

  2. #12
    To do port forwarding in ipchains is not that hard. Do a search for ipmasqadm. I have an http/mysql server setup running behind a dialup firewall that forwards port 80 to my web server.
    Bolt actions speak louder than words.

  3. #13
    Junior Member
    Join Date
    Jan 2002
    Posts
    7
    OK, I've got my firewall running well at the moment. Find attached my script (completely stolen from another website). I need to tweak the script to do the following:

    1) Cope with dynamic IP - I've set the $INET_IP variable to my current DHCP assignment. How can I change this script to cope with dynamic IP? eth0 is my dynamically assigned internet-facing network card.

    2) Block all outgoing traffic except ports 21,53,80,110,119,123,443,3389,6667-6670,8080

    Thanks,
    Keymoo

  4. #14
    Junior Member
    Join Date
    Jan 2002
    Posts
    7
    I'm also going to take a look at this
    http://muse.linuxmafia.org/gshield.html

    to see if it will make my life any easier.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •