Basically,
insmod ip_masq_ftp; insmod ip_masq_irc; insmod ip_masq_raudio; insmod
ip_masq_quake
then ipchains -P forward DENY
ipchains -A forward -s 192.168.0.0/255.255.255.0 -j MASQ
cat 1 > /proc/sys/net/ipv4/ip_forward
and you are up on the net able to access most things (if your localnet
is 192.168.0.X . If you want to run servers behind firewalls, you will
need to use some portforwarding rules in your ipchains rules. If you are
going to run servers within firewalls, you should at least read the
ipchains HOWTO. Some distributions don't have masquerading compiled into
the kernel so you might have to do that too (not necessarily as hard as
it sounds). AS was stated before, you need ipchains to make it work.
Note: this is only a simple setup.... read the ipchains HOWTO (thought I'd
better say it again).
Regards, Mehmet
On Sat, 25 Nov 2000, Angus Lees wrote:
> \begin{Jon Biddell}
> > > I basically wish to create a linux gateway out onto the internet. The linux
> > > box has a dedicated line to it.
> > >
> > > I do not really want a proxy/firewall setup as this can limit applications
> > > that can run on the rest of the network.
> >
> > Try looking at IPMASQ - if you are using SuSE (or probably most of
> > the others), it's pretty simple to set up.
>
> for debian, you install the "ipmasq" package
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
