I am setting up masquerading on a debian 1.3 box and I need to
figure out the rules I need to add. The linux gateway machine has an
assigned ip (private of 10.0.0.1) and clients will be 10.0.0.2 and .2 and
so forth. What ipfwadm rules do I need to add I was thinking the
following:
Jason wrote:
I am setting up masquerading on a debian 1.3 box and I need to
figure out the rules I need to add. The linux gateway machine has an
assigned ip (private of 10.0.0.1) and clients will be
10.0.0.2 and .2 and
so forth. What ipfwadm rules do I need to add I was thinking the
Hi,
I followed the excellent documentation on how to setup ipfwadm
but after setting it up , I started seeing a ton of messages in
the messages file and syslogd was taking up about 90% of the
CPU time , so what I did for the moment was turn off logging for
the Input firewall. I'd like to turn
Hirendra Hindocha [EMAIL PROTECTED] wrote:
I followed the excellent documentation on how to setup ipfwadm
but after setting it up , I started seeing a ton of messages in
the messages file
Feb 7 00:10:24 c526184-a kernel: IP fw-in rej eth0 UDP 0.0.0.0:68 255.255.255.2
UDP port 68 is the
Just curious, other than TrinityOS, are there any other
good example sites for rules of firewalls with the following:
Yeah.. Lots!
For example, I got these from The Linux Documentation Project WWW
link page ( http://metalab.unc.edu/LDP/links.html ):
http://rlz.ne.mediaone.net/linux
G'day all,
I have a general query. Does anyone know what type of load counting
bytes puts on a machine?
For example, if I use ipfwadm in accounting mode and tell it to track
say 50 machines (example only), then does it slow the machine down? Does
it slow the traffic down as well?!?!?
I
There are some obscure options to ipfwadm.
-p policy: what's the difference between deny reject ?
And now, to be sure I'm not wrong :
ipfwadm -I -a accept -P tcp -W eth0 -S0.0.0.0/0 1024:65535 -D
192.169.0.1 ftp
- means that I accept all incoming packets, going through eth0, tcp
only, from
On Thu, 10 Sep 1998, David A. Ranch wrote:
}
}ipfwadm -I -c -P tcp -S 193.59.68.1:1234 -D lo4.ids.bielsko.pl:138 -W \
} ppp0 -V 193.59.68.168:3456
}
}
}Try it without the -W and -V commands.
it won't accept it without those two:
ipfwadm: interface address (-V) required
}Try it without the -W and -V commands.
it won't accept it without those two:
H... Dunno. To be honest.. I didn't even know that
the -c command was in there. Keep trying but before you
get completely frustrated.. lemmie know and I'll give
it a wack.
--David
Hi,
I am trying to set up a firewall/masq box for my small network
One of the things I want it to do is to filter all packets from outside
world to netbios ports
this is my set of commands:
topology:
-- ppp0 eth0
INET || my beloved Linux box
I have a few pc's at home that I want to setup on the net but with some
security. I have 5 ip addresses that my provider has assigned me, the
first in line being the static one I am assigned upon dialin and the 4
after that for my machines. Will I be able to use ipfwadm to control
the services
On Tue, Jul 28, 1998 at 11:40:00AM -0500, John Jakubowski wrote:
I have a few pc's at home that I want to setup on the net but with some
security. I have 5 ip addresses that my provider has assigned me, the first
in line being the static one I am assigned upon dialin and the 4 after that
for
Slightly off topic here, please excuse me.
I've had problems finding help for my problem, and you guys seem like
a helpful bunch.
I can't get the ipfwadm work as expected, I think the doc says that
the first matchin rule will work. I experience differently.
I am running Redhat 5.0 on kernel
I am new to linux but have been using IPmasqurade for a couple of years now.
I want to add a second ethernet card to my server and have linux forward the
packets. My ip addresses for the cards would be 192.168.2.1 and 192.168.1.1
and a ppp0 of xxx.xxx.xxx.xxx. I would like to masqurade both
On Tue, 23 Jun 1998, Ken Hughes wrote:
I am new to linux but have been using IPmasqurade for a couple of years now.
I want to add a second ethernet card to my server and have linux forward the
packets. My ip addresses for the cards would be 192.168.2.1 and 192.168.1.1
and a ppp0 of
i dont want to sound rude but i do know what masquerading is :)
what i meant is you cannot ping from the internet a box behind a
masqserver
think for a sec :
ping 192.168.0.1
no router has a default gateway for this ( on the internet ) it will go as
far as the first BGP router . then it
The following appears to work fine:
ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.0.0/24 -D 0.0.0.0/0
Now if I add either '-V 192.168.0.1' or '-W eth1' to the second comand, all
my client accesses fail.
Since I haven't seen any replies to this I will say what I think and perhaps
someone
i never found a clear document on this subject. could someone correct
me if i'm wrong ?
1) all ip packet from outside goes to ipfw host ip, so incoming packets
rules must be wroten with the gateway IP as source, and not the
final
masqueraded host.
ie. the ipfwadm rules come
18 matches
Mail list logo