/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
On Mon, 5 Mar 2001, Steve Cullingworth wrote:
> /sbin/depmod -a
> /sbin/modprobe ip_masq_ftp
> /sbin/modprobe ip_masq_raudio
> /sbin/modprobe ip_masq_pptp
> /sbin/modprobe ip_gre
You don't want ip_gre, it has nothing to do with PPTP and may be
interfering.
> ipchains -P forward DENY
>
> ipchains -F input
> ipchains -F output
> ipchains -F forward
>
> ipchains -A input -j ACCEPT -s 192.168.2.0/24 -d 0.0.0.0/0 -i eth1
> ipchains -A output -j ACCEPT -s 0.0.0.0/0 -d 192.168.2.0/24 -i eth1
>
> ipchains -A forward -j MASQ -s 192.168.2.0/24 -d 0.0.0.0/0 -i eth0
> ipchains -A output -j ACCEPT -s 0.0.0.0/0 -d 0.0.0.0/0 -i eth0
> ipchains -A input -j ACCEPT -s 0.0.0.0/0 -d 0.0.0.0/0 -i eth0
>
> IPMASQ='/usr/sbin/ipmasqadm portfw '
> IPFW='/usr/local/sbin/ipfwd '
>
> $IPMASQ -a -P tcp -L 200.200.200.200 1723 -R 192.168.2.1 1723
> $IPFW --masq 192.168.2.1 47 &
That all looks okay.
--
John Hardin KA7OHZ ICQ#15735746 http://www.wolfenet.com/~jhardin/
[EMAIL PROTECTED] pgpk -a finger://gonzo.wolfenet.com/jhardin
768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Failure to plan ahead on someone else's part does not constitute an
emergency on my part.
- David W. Barts in a.s.r
<[EMAIL PROTECTED]>
-----------------------------------------------------------------------
27 days until Daylight Savings Time begins
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
