Merhaba, http://ezine.daemonnews.org/200209/squid.html
Kolay gelsin Devrim Paz 02 Kas 2003 15:37 tarihinde, Abdullah ÖZTÜRK şunları yazmıştı: > slm arkadaslar, > > problemleri bir turlu halledemedim yardim lutfen; > > asagida ki gibi bir ipf.conf ve natd.conf dosyalarim var burdan > squid uzerinden baglanamiyorum ne zaman ki hepsine gel gec dedigim de ancak > baglanabiliyorum zaman zaman dns lookup error goruyorum bundan > olabilecegini dusunuyorum. > 1-local den gelecek 80 istekli istekleri proxy 3128 portuna yonlendirmek > istiyorum fakat onu da beceremedim > > 2-mail server local de ki bir makina da ona yonlendirmek istiyorum ama onu > da beceremedim > 3-web server in da acik olmasi lazim ayni makinanin uzerinde olacak diye > dusundum bunu da beceremedim > yeni olunca boyle oluyor heralde. > yardim edebilirseniz tsk ederim > > Not:bu ayarlarla nat calisiyor internete cikabiliyorum local den > > Flushed all rules. > hook# ipfw /etc/ipfw/ipfw.conf > 00010 divert 8668 ip from any to any via rl0 > 00020 check-state > 00100 allow ip from 192.168.1.0/24 to any via rl0 > 00101 allow ip from 192.168.1.0/24 to any via rl1 > 00102 allow 192 from any to any via rl1 > 00200 deny ip from any to 127.0.0.0/8 > 00201 skipto 0 ip from any to any ipopt lsrr > 00202 skipto 0 ip from any to any ipopt ssrr > 00400 deny tcp from any to any 113 in recv rl0 > 00401 deny tcp from any to any 137 in recv rl0 > 00402 deny tcp from any to any 138 in recv rl0 > 00403 deny tcp from any to any 139 in recv rl0 > 00404 deny tcp from any to any 81 in recv rl0 > 00405 deny ip from any to any in recv rl0 frag > 00300 deny ip from 172.16.0.0/12 to any in recv rl0 > 00301 deny ip from any to 172.16.0.0/12 out xmit rl0 > 00302 deny ip from any to 10.0.0.0/8 in recv rl0 > 00303 deny ip from any to 10.0.0.0/8 out xmit rl0 > 00304 deny ip from 192.168.0.0/16 to me in recv rl0 > 00305 deny ip from 192.168.0.0/16 to me in recv rl0 > 00306 deny ip from any to me in recv rl0 > 00500 pipe 1 ip from any to 192.168.0.0/24 out xmit rl1 > > > hook# cat natd.conf > use_sockets > same_ports > interface rl0 > dynamic --------------------------------------------------------------------- Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. http://www.acikkod.com/freebsd.php To unsubscribe, e-mail: [EMAIL PROTECTED] Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL PROTECTED]
