>From: Jochen
>Date: 24 Sep 2001 18:03:45 +0200
>
>Bei Linuxbox still not works as a router!
>I will try to explain as detailed as possible:
There's a setting for forwarding connections that I don't think has been
mentioned.
type this: less /proc/sys/net/ipv4/ip_forward
If you get a 0 value then ip forwarding is off. use this command to turn
it on:
echo "1" > /proc/sys/net/ipv4/ip_forward
I would recommend you use a firewall on the connection. IPchains should be
installed by default on a RH71 system. Put this script file in
/etc/rc.d/init.d/ as the file ipchains. It is a very, very, very basic
ipchains ruleset I wrote from memory.
---------------------------------
echo "1" > /proc/sys/net/ipv4/ip_forward
/sbin/ipchains -F
/sbin/ipchains -A input -j ACCEPT -i ppp0 -s 0/0 25 -d 0/0 -p tcp
/sbin/ipchains -P forward REJECT
/sbin/ipchains -A forward -s 192.168.0.0/5 -j MASQ
--------------------------------
This will enable masquerading for your internal clients and block incoming
requests to those machines. That linux box, however, will be completely
exposed with this ruleset. IIRC.
Other people have mentioned good firewall resources over the last 2-3 days
so check the archive for more detailed how-tos.
>I would be very essential for me and our business to
>get Routing work!
Word to the wise: if you have something that works, don't mess with it. I
don't mean never upgrade, but rather experiment on a completely separate
piece of hardware so that when the crap hits the fan you can pull out "Old
Reliable" and make everything hunky dory while you scratch your head and do
more research.
-James McP
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
