hi Dan, first at all - have a lot of thanks to say for helps in every case. the example I have posted, I had found in an example of a doc-file, where iptables would be explained --:))) but as in the most cases it will happen, that some things are not running in that way, it should. And then the surprise is very big - you know --:))) this is the so called ooops-time.
anyway : here are my facts of my "hopefully running firewall in the future" have 2 ethercards : eth0 is IP 10.0.0.10 and WAN-connected to a ADSL-Modem; eth1 is IP 192.168.10.8 is LAN this machine should be the firewall AND masquerade. Dont't know if it is a good idea to have a dhcp running on it or not.In some docs it will be recommended, some other docs says NO - anyway - first at all a masquerade and firewall should be the first things, which should be realized - so I think. Are these the faq's you have to know for that late meeting ? bye hans Am Mon, 2002-10-21 um 21.39 schrieb Daniel J. Cody: > Hi again Hans - > > I think I understand what you're trying to do, and you're on the right > track but just have a few syntax problems with your command.. > > hans privat wrote: > > hi, > > have detected a newone problem with an iptable-command, here it is : > > > > iptables -N block -m state --state ESTABLISHED,RELATED -j ACCEPT > > the "iptables -N <CHAIN>" command will create a new chain, 'block' in > your case, and you're on the right track so far, but the mistake you > made was to try to apply rules and targets in the same command as the > creation of the chain, and you didn't specify an interface. > > The quick solution would be to run two commands like so: > > iptables -t filter -N block > iptables -A block -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT > > if eth0 is the interface you're applying the chain against. If you want, > I can walk you through the steps above to get a working chain which I > would do in this email if I weren't late for a meeting, let me know if > you do though :) > > Dan > http://five2one.org/ > > > ---- > > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
