/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
Ashley M. Kirchner wrote:
> I'm using David Ranch's TrinityOS script to setup ipchains on my
> firewall server, serving several client machines in house. By default
> this opens up the entire network, for example, 10.2.1.0/24. If I just
> want to open individual IPs, do I have to enter a rule for each one (and
> drop the main one)? [ The idea behind this is so that I can control
> which client gets what access at what time of the day. ]
yes, of course that's what you do. just make sure you make
the rules apply to the internal network interface. if you
make them apply to the external/masquerading interface, they
won't work because the ip addresses will have been
masqueraded by then.
raf
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
