Hi gang,
I have just installed the latest version of 'Sarge' the install went very smooth, which I am pleased about. Basically this is how I want my setup to be.
Internet <->cablemodem<->debain(web/email/ftp server)<->hub<->Windows
1). Run a small web/email/ ftp server from the debain box 2). Access the Internet from my windows box.
I've been looking for a simple firewall/NAT ruleset, so far this is what I have found. (192.168.10.45 is the ip on eth0, 192.168.20.1 is the ip on eth1)
iptables -F iptables -N FIREWALL iptables -F FIREWALL iptables -A INPUT -j FIREWALL iptables -A FORWARD -j FIREWALL iptables -A FIREWALL -p tcp -m tcp --dport 25 --syn -j ACCEPT iptables -A FIREWALL -p tcp -m tcp -s 192.168.20.1/24 --dport 22 --syn -j ACCEPT iptables -A FIREWALL -i lo -j ACCEPT iptables -A FIREWALL -p udp -m udp --sport 53 -j ACCEPT iptables -A FIREWALL -p tcp -m tcp --sport 53 -j ACCEPT iptables -A FIREWALL -p udp -m udp --dport 123 -j ACCEPT iptables -A FIREWALL -p udp -m udp --sport 6277 -j ACCEPT iptables -A FIREWALL -p udp -m udp --sport 24441 -j ACCEPT iptables -A FIREWALL -p tcp -m tcp --syn -j REJECT iptables -A FIREWALL -p udp -m udp -j REJECT iptables-save > /etc/firewall-rules iptables-restore < /etc/firewall-rules
Can anyone tell me, if using the above ruleset, I can access the net using my windows computer via the debian box? If not, what rules do I need to add.
Thanks
Kev
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
