Uhh, yes they are both very different
the 2 variables presuppose you are using the setup from chapter 10 which
has your internal network of computers (ms windows) which are connected
into a linux samba/router/file server box that forwards all packets to a
separate firewall box which masq's said packets onto the net.
The ipfwadm ruleset in question would be run on the the firewall box.
the file server would have 2 nics in it, the internal nic would be on
PRIV_NET on subnet (192.168.1.xxx) , while the external one would be on
a different subnet in common with the internal nic of the firewall pc
(192.168.32.xxx). These subnets are the examples direct from the book.
On 15 Nov 98, at 19:04, David A. Ranch wrote:
>
> I doubt the FIRE_NET and PRIV_NET are the same. One
> interface should be the IP address of your Internet
> connection and the other should be the IP of your
> private LAN connection.
>
> To get your dynamic IP address for your script, try this
> little script from the TrinityOS doc. Please note the
> different "'" and "`"s since they are critical:
>
> This also assumes your Internet connection is a PPP link.
>
>
> FIRE_NET=`/sbin/ifconfig | grep -A 4 ppp0 | awk '/inet/ { print $2 } ' |
> sed -e s/addr://`
>
> Beyond that.. I can't help you out more since I haven't
> seen that IPFWADM script before.
old age getting to ya dude, memory going?!?! ; - ) that's the same script
you were helping me out with when I was having trouble getting pasv ftp to
work through my masq box. I am rebuilding the firewall box with RH5.2 and
the scsi hdd in the fileserver bit the dust a few days ago, so I have to pretty
much start the whole thing from scratch again <sigh>
Harondel J. Sibble
Sibble Computer Consulting
Creating solutions for the small business and home computer user.
[EMAIL PROTECTED] (pgp enabled) http://www.pdscc.com
(604) 739-3709 (voice/fax) (604) 686-2253 (pager)
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
