On Friday 27 June 2003 05:48, Linux wrote: > My problem is that I don't know HOW I should put in the various rules in > ipmasq => Which makes me look for something simpler or some examples or > tips. > > What I want to do is open up for incoming mail and http to be able to > access my mailserver and internal webserver from internet, but not > necessarily on the standard ports but some other ones. > > Any suggestions or recommendations ? If you use kernel 2.4.x, you can use shorewall with iptables (apt-get install shorewall shorewall-doc). it's got very good documentations, it has a lot of features and it's easy to use. I had some problems with the version in woody (somehow it wouldn't do DNAT), so I eventually downloaded their package from http://www.shorewall.net. I guess that the package from unstable in ok (shorewall is only a front-end to iptables so using the one from stable wouldn't be too much of a security risk - am I wrong here, anybody?).
Bye -- Haim
