On Tue, 1 Jan 2002, Tzafrir Cohen wrote: > > http://monmotha.mplug.org/firewall/index.php > > I'll have a look Though this seems to be lack a "start" and "stop" comands > of a standard sysv-init script .
just my 0.02 Euro, but my script may be able to serve you if you prefer a simple script over a glitzy UI like me. it's originally for dialup and so it uses MASQ instead of SNAT, but it should be easy to change. what you are asking is quite complex (a DMZ has different meanings in different setups, so lots of parameters here will have to be nipickingly thought over before set, there's no ready made solution just like that), you may actually have to spend an hour or two on this, sorry :) feel free to take a look: http://ira.abramov.org/linux/ the latest one is the ADSL script I use today, with MASQ and two secure subnets behind it, one can easely be your DMZ with little tweaking. forwarding ports (DNAT) is not covered though. as for stability - I have been using it for almost a year now (IPtables), and the crack attempt logs show it's pretty good :) Yom Tov, Ira. -- Pet my Dingo Ira Abramov ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
