/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
Craig White [mailto:[EMAIL PROTECTED]] wrote:
> Sorry this is so long - but I hope that it will read clearly
> and be obvious.
>
> OK - I've been spoiled by the absolutely brilliant design of
> ip masq scripts by David Ranch (how's that for sucking up?)
>
> Seriously though, I thoroughly understood David's flow, logic
> and command structure and unfortunately, I am left to struggle
> myself while David struggles with it too - see his section 6.4
> of his 'beta' version of Trinity OS.
>
> Ok - I'm not bright enough or have no experience with BSD to
> comprehend all of the potential of iptables but I can tell that
> it's awesome.
>
> I will try to keep my questions as short as possible...
Take a look at http://www.asgardsrealm.net/linux/firewall/firewall, it is a
script that I've been working on to replace the ipchains firewall that I was
using previously. It is largely based on this previous script (wish I could
remember the author to give him/her proper credit). I have completed rough
functionality for most everything except LAN to LAN forwarding. I have the
basic frame work in place for this, but have not yet sat down to figure out
the exact rule. I do have port forwarding work quite well. Maybe the
script will be a learning tool for you, maybe you will decide to use the
script for your firewall, either is fine with me.
I was planning to release this script once I had completed it, but now seems
as good a time as any. I welcome any and all peer review of the script.
This is my first major shell script and first dive into the wonder that is
iptables. So, I'm sure I have a lot to learn.
I will have an actual site up for the script soon. There is already an
e-mail address active for it already, the address is included in the script
(omit from list mailing in hopes to prevent spam harvesting).
Jamin W. Collins
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
