/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
Hi, all
I am using linux router with NAT. My linux router has two interfaces, eth0 and eth1.
Interface eth0 is connected with adsl modem and the other eth1 is connected with local
hub. I have just one internet address obtained by my ISP. So I installed one linux
machine as NAT router. I already installed ipchains, ipmasqadm (portfw,autofw) and so
on. In local side, I use private addresses.
Our current system map is as follows
ISP------ADSL modem-------eth0----linux router ------eth1 ------------------ computer
1 (192.168.10.2)
(211.171.108.19)
(192.168.10.1) |----------- computer 2 (192.168.10.3)
|----------- computer 3 (192.168.10.4)
|----------- computer 4 (192.168.10.5)
My firewall fire is as follows
---------------------------------------------------------------------------------------------------
#!/bin/sh
# Begin /etc/init.d/firewall
check_status()
{
if [ $? = 0 ]
then
echo "OK"
else
echo "FAILDED"
fi
}
/sbin/insmod ip_masq_ftp
/sbin/insmod ip_masq_quake
/sbin/insmod ip_masq_irc
/sbin/insmod ip_masq_raudio
/sbin/insmod ip_masq_vdolive
/sbin/insmod ip_masq_cuseeme
/sbin/insmod ip_masq_h323
echo -n "Enable IP forwarding ... "
echo "1" > /proc/sys/net/ipv4/ip_forward
check_status
echo -n "MASQ Timeout setting ... "
/sbin/ipchains -M -S 7200 10 160
check_status
echo -n "Enable simple IP forwarding and masquerading ... "
/sbin/ipchains -P input ACCEPT
/sbin/ipchains -P forward DENY
/sbin/ipchains -P output ACCEPT
/sbin/ipchains -A forward -s 192.168.10.0/24 -j MASQ
echo -n "WWW service port forwarding ..."
/sbin/ipmasqadm portfw -a -P tcp -L 211.171.108.19 80 -R 192.168.10.4 80
echo -n "Dialpad service enabling ..."
/sbin/ipmasqadm autofw -A -r udp 51200 51201 -c 7175
/sbin/ipmasqadm autofw -A -r tcp 51200 51201 -c 7175
echo -n "Enable dialpad application ..."
/sbin/ipmasqadm autofw
check_status
-----------------------------------------------------------------------------------
With my firewall file, Masquerading service is good enough to using WWW service and
others also.
I referenced the MASQ Application web site and many good linux documentations. I am
running WWW server with port forwarding. Besides, I can call with dialpad application.
But still confusing...
My Question is my computer (192.168.10.3) always want to use all the application
(game,video chatting, all application in the world...) as if this is just one host
computer directly connected to adsl line.
I tried to set like this "ipmasqadm autofw -A -r udp 1024 65535 -h 192.168.10.3"
"ipmasqadm autofw -A -r tcp 1024 65535 -h 192.168.10.3". But it didn't worked as I
expected.
Some Internet sharing device gives this functionality and named "Exposed Host". In
this device, If I set the IP address of one dedicated computer, I can use
"dialpad,starcraft, and other applications". Does any one tell me how to do that?
Thanks, in advance
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
