/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
|-----Original Message-----
|From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
|Of Tony Blackmon
|Sent: Wednesday, June 28, 2000 4:53 PM
|To: [EMAIL PROTECTED]
|Subject: [Masq] ipchains newbie alert. :)
|
|
|/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
|/* ALSO: Don't quote this header. It makes you look lame :-) */
|
|
|I need help here. I have never used ipchains before, but have used ipfwadm
|(still wouldnt know how to pull this off though).
|
|My configuration is this:
|
|
|Linux machine 1
|Running: Slackware 7.0
|-------------------------------------
|eth0 - LAN: 192.168.0.1
|eth1 - INET: 24.31.216.25
|
|
|Windows Machine 1
|-----------------------------
|NIC1 - 192.168.0.2
|
|
|I am up and running right now with ipfwadm, all machines inside (there is
|one more windows machine that is not important) can use the
|internet and any
|service they need to run. I need to redo that with ipchains, as well as
|forward www and ftp/ftp-data to Windows machine 1. Is this possible with
|ipchains? I could not get the ftp stuff working properly with
|ipfwadm. I can
|get the server to allow a connection, but cannot seem to get a directory
|listing after that.
After upgrading your system add this to the /etc/rc.d/rc.local script
/sbin/modprobe ip_masq_autofw
/sbin/modprobe ip_masq_cuseeme
/sbin/modprobe ip_masq_ftp
/sbin/modprobe ip_masq_irc
/sbin/modprobe ip_masq_mfw
/sbin/modprobe ip_masq_portfw
/sbin/modprobe ip_masq_quake
/sbin/modprobe ip_masq_raudio
/sbin/modprobe ip_masq_user
/sbin/modprobe ip_masq_vdolive
/sbin/modprobe ip_masq_icq
/sbin/modprobe ip_masq_h323
/sbin/modprobe ip_masq_pptp
/sbin/modprobe ip_masq_pptp
/sbin/modprobe ip_masq_ipsec
/sbin/modprobe ip_gre
/sbin/modprobe ipip
#
#
#
# Fire up The Masquerade
#
#
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ
#
#
Later after you have everything working, start worrying about firewall
rules...
Don't forget to set up Linux's Resolver, or use dhcp for the eth1 device!
Note: you probably will not have all the modules I listed above... check
your /lib/modules/2.x.x-xxxx/ipv4 directory...
|
|I am an internet developer for an engineering firm looking for a way to ftp
|my work to my home machine for testing purposes whenever I need to
|throughout the day. Since we run a windows network here in the office, i
|need a windows web server set up at home to do my testing. i have that all
|done, but how the heck do i get routed back to that machine if its
|inside my
|firewall? :)
Why not use the Linux firewall as a Web server?
Much easier this way...
-JMS
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
