Hocam merhaba dosyalar ekte
ipf rule dosyasÄ iki tane. Äkisini de denedim. On Tue, 2004-07-06 at 10:09, Murat Balaban wrote: > Ilgili ipf ve ipnat rule'larini, ifconfig ciktisini, netstat -rn ciktisini > telnet 192.168.0.8 10000 ciktisini yollar misiniz? > > Bir de, 192.168.0.8'in defatult gateway'i ne? > > > On Tue, Jul 06, 2004 at 10:09:16AM +0300, ahmet orhan wrote: > > dediklerinizi yapt??m. > > bir??ok deneme yapt??m fakat olmad??. > > > > > > On Tue, 2004-07-06 at 09:58, Murat Balaban wrote: > > > Selamlar, > > > > > > fxp1 dis arabiriminiz degil mi? Yani 213... lu ipnizin bind oldugu interface? > > > 1. Degilse oyle olmasi lazim. > > > 2. Oyleyse, dis interface'de 213.194.113.66 port 10000'e izin vermelisiniz. > > > 3. local interface'de de out 192.168.0.8 port 10000'e izin vermelisiniz. > > > > > > paket fxp1 den geldiginde dst ip 213...lu olacaktir, ama ipfilter bunu > > > re-write edip (dst'sini 192.... yapip) local interface'e inject edecektir. > > > > > > Bu sekilde calismasi lazim. > > > > > > > > > On Tue, Jul 06, 2004 at 09:09:39AM +0300, ahmet orhan wrote: > > > > Merhabalar. > > > > > > > > rdr fxp1 213.194.113.66/32 port 10000 -> 192.168.0.8 port 10000 > > > > > > > > bu rule sayesinde internet arabiriminden (fxp1) gelen istekler yerel > > > > a??daki ba??ka bir makinaya y??nlendirilmesi gerekir. Fakat ??al????m??yor. > > > > > > > > ipf den gerekli izinleri verdim. > > > > ipnat.rules de bulunan di??er sat??rlar?? devre d?????? b??rakt??m. > > > > ip forwarding a????k. > > > > olmad??. > > > > > > > > > > > > ayn?? olay?? 192.168.0.10 nolu makinede (bu ipnat/ipf makinas??) ??al??????yor > > > > ama yerel a??dan ba??ka bir yere y??nlendirme yapm??yor. > > > > > > > > rdr fxp1 213.194.113.66/32 port 10000 -> 192.168.0.10 port 80 ok. > > > > > > > > Bunun i??in DMZ uygulamas??na m?? ge??mek gerek. Yani 3. bir ethernet kart?? > > > > taksam ve y??nlerdirmeyi buradaki bir bilgisayara yapsam. (S??ylece??ine > > > > yap dene diyebilirsiniz ama rock'?? ??yle bi oturtmu??um ki kabine s??kmek > > > > de zorlan??yorum :-) ) > > > > > > > > > > > > --------------------------------------------------------------------- > > > > Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. > > > > http://www.acikkod.com/freebsd.php > > > > > > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > > > Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL > > > > PROTECTED] > > > > > > > > > > > > > > --------------------------------------------------------------------- > > Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. > > http://www.acikkod.com/freebsd.php > > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL > > PROTECTED] > > > >
> ifconfig
fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 192.168.0.10 netmask 0xffffff00 broadcast 192.168.0.255
inet6 fe80::2e0:81ff:fe21:3fc2%fxp0 prefixlen 64 scopeid 0x1
ether 00:e0:81:21:3f:c2
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
fxp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 213.194.113.66 netmask 0xfffffff0 broadcast 213.194.113.79
inet6 fe80::2e0:81ff:fe21:3fc3%fxp1 prefixlen 64 scopeid 0x2
ether 00:e0:81:21:3f:c3
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
lp0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> mtu 1500
faith0: flags=8002<BROADCAST,MULTICAST> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
inet 127.0.0.1 netmask 0xff000000
ppp0: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
sl0: flags=c010<POINTOPOINT,LINK2,MULTICAST> mtu 552
# # ipf.rules # # fxp0 LAN Network # fpx1 EXT Network #loopback sunucu ici izin ver pass in quick on lo0 all pass out quick on lo0 all # # Yerel ag giris ve cikislara izin ver pass in quick on fxp0 all pass out quick on fxp0 all # pass in quick on fxp1 all pass out quick on fxp1 all
ipnat.rules
Description: Binary data
> netstat -rn Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 213.194.113.65 UGSc 7 60069 fxp1 127.0.0.1 127.0.0.1 UH 0 0 lo0 192.168.0 link#1 UC 30 0 fxp0 192.168.0.6 00:0d:61:26:ad:29 UHLW 0 997 fxp0 1098 192.168.0.8 00:08:a1:2a:c3:12 UHLW 3 4581 fxp0 1069 192.168.0.10 00:e0:81:21:3f:c2 UHLW 0 133 lo0 192.168.0.11 00:02:55:aa:ae:86 UHLW 1 604 fxp0 1191 192.168.0.12 00:0d:61:2b:9c:b4 UHLW 0 32 fxp0 1119 192.168.0.31 00:0e:a6:6c:18:de UHLW 1 22721 fxp0 1196 192.168.0.50 00:50:fc:41:a2:2e UHLW 0 264 fxp0 117 192.168.0.56 00:02:3f:93:a3:e6 UHLW 0 111 fxp0 1104 192.168.0.57 00:80:ad:00:d7:66 UHLW 0 316 fxp0 987 192.168.0.60 00:ee:b1:04:04:54 UHLW 0 460 fxp0 678 192.168.0.64 00:0a:95:cc:42:f8 UHLW 1 47425 fxp0 827 192.168.0.66 00:30:65:64:db:96 UHLW 0 18 fxp0 868 192.168.0.72 00:08:a1:2c:9a:36 UHLW 0 592 fxp0 966 192.168.0.74 00:00:8c:01:08:89 UHLW 1 4929 fxp0 1054 192.168.0.82 00:80:ad:76:78:08 UHLW 1 366 fxp0 1156 192.168.0.100 00:08:a1:27:89:f6 UHLW 0 1640 fxp0 862 192.168.0.104 00:10:60:5c:07:f9 UHLW 0 16 fxp0 185 192.168.0.106 00:08:a1:27:8b:4b UHLW 0 832 fxp0 717 192.168.0.135 00:06:5b:65:2f:91 UHLW 1 3440 fxp0 1068 192.168.0.138 00:06:5b:65:2f:bf UHLW 0 119 fxp0 1019 192.168.0.171 00:07:e9:0a:37:f2 UHLW 0 1744 fxp0 932 192.168.0.176 00:04:75:e3:53:db UHLW 1 13827 fxp0 1097 192.168.0.178 00:02:44:65:25:f5 UHLW 1 260 fxp0 1010 192.168.0.183 00:50:bf:19:a8:4d UHLW 0 2975 fxp0 983 192.168.0.188 00:0d:61:28:83:09 UHLW 0 852 fxp0 145 192.168.0.192 00:0d:61:2b:77:1b UHLW 0 18 fxp0 941 192.168.0.193 00:00:f8:04:ed:75 UHLW 0 1545 fxp0 192.168.0.223 00:50:fc:41:a2:67 UHLW 0 41 fxp0 345 192.168.0.225 00:05:1c:09:53:1a UHLW 0 564 fxp0 1090 192.168.0.255 ff:ff:ff:ff:ff:ff UHLWb 1 1885 fxp0 213.194.113.64/28 link#2 UC 2 0 fxp1 213.194.113.65 00:60:97:8f:70:ab UHLW 1 0 fxp1 1196 213.194.113.66 00:e0:81:21:3f:c3 UHLW 0 7308 lo0 Internet6: Destination Gateway Flags Netif Expire ::1 ::1 UH lo0 fe80::%fxp0/64 link#1 UC fxp0 fe80::2e0:81ff:fe21:3fc2%fxp0 00:e0:81:21:3f:c2 UHL lo0 fe80::%fxp1/64 link#2 UC fxp1 fe80::2e0:81ff:fe21:3fc3%fxp1 00:e0:81:21:3f:c3 UHL lo0 fe80::%lo0/64 fe80::1%lo0 Uc lo0 fe80::1%lo0 link#5 UHL lo0 ff01::/32 ::1 U lo0 ff02::%fxp0/32 link#1 UC fxp0 ff02::%fxp1/32 link#2 UC fxp1 ff02::%lo0/32 ::1 UC lo0
ayman:~/.wine/fake_windows/Program Files/RiteRecovery # telnet 192.168.0.8 10000 Trying 192.168.0.8... Connected to 192.168.0.8. Escape character is '^]'.
--------------------------------------------------------------------- Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. http://www.acikkod.com/freebsd.php To unsubscribe, e-mail: [EMAIL PROTECTED] Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL PROTECTED]
