sebelumnya numpang tanya, script firewall-nya anda create sendiri atau pakai shorewall. kalau create sendiri lebih baik paste script anda ke milist agar bisa di analisa. kalau anda pakai shorewall paste juga: 1. policy 2. interfaces 3. masq 4. zones 5. rules 6. shorewall.conf
dan shorewall versi berapa thank's eddy -----Original Message----- From: "alessandro rezky" <[EMAIL PROTECTED]> To: [email protected] Date: Fri, 08 Apr 2005 09:49:41 +0700 Subject: Re: [tanya-jawab] DNAT maap mas... coba gunakan iptables -t nat -nL lalu di posting lagi... soalnya agak bingung dgn listing yg dari mas...he2 :) rzk On Thu, 07 Apr 2005 17:47:02 +0700 "zaniesh" <[EMAIL PROTECTED]> wrote: > setelah saya masukkan perintah >> root# iptables -t nat >-L -v -n > muncul begini mas > > Chain PREROUTING (policy ACCEPT 7995 packets, 896K >bytes) > pkts bytes target prot opt in out source > destination > 2317 258K net_dnat all -- eth0 * 0.0.0.0/0 > 0.0.0.0/0 > 6227 664K loc_dnat all -- eth1 * 0.0.0.0/0 > 0.0.0.0/0 > > Chain POSTROUTING (policy ACCEPT 1420 packets, 112K >bytes) > pkts bytes target prot opt in out source > destination > 3304 243K eth0_masq all -- * eth0 0.0.0.0/0 > 0.0.0.0/0 > > Chain OUTPUT (policy ACCEPT 1758 packets, 155K bytes) > pkts bytes target prot opt in out source > destination > > Chain eth0_masq (1 references) > pkts bytes target prot opt in out source > destination > 1949 136K MASQUERADE all -- * * > 192.168.0.0/24 0.0.0.0/0 > > Chain loc_dnat (1 references) > pkts bytes target prot opt in out source > destination > 549 26352 REDIRECT tcp -- * * 0.0.0.0/0 > !192.168.0.3 tcp dpt:80 redir ports >3128 > > Chain net_dnat (1 references) > pkts bytes target prot opt in out source > destination > 9 480 DNAT tcp -- * * 0.0.0.0/0 > 202.154.x.x tcp dpt:80 to:192.168.x.x > > koq masih tidak bisa diakses dari luar yaa??/ > mohon sarannya.... > > terima kasih.. > zaniesh > > > On Wed, 06 Apr 2005 18:51:53 +0700 > "gian" <[EMAIL PROTECTED]> wrote: >> Salam, >> coba lihat di "console"-nya langsung untuk table NAT-nya >> (./me kagak ngerti shorewall). >> root# iptables -t nat -L -v -n >> Chain PREROUTING (policy ACCEPT 3071 packets, 198K >>bytes) >> pkts bytes target prot opt in out source >> >> destination >> 184 10168 DNAT all -- ethX * 0.0.0.0/0 >> >> ip-public to:ip-private >> >> ethX = in dari internet >> >> Salam, >> -Gian- >> > ======================================================================================== > Akses Internet TELKOMNet-Instan beri Diskon s.d. 50 % >khusus untuk wilayah Jawa Timur. > Informasi selengkapnya di www.telkomnetinstan.com atau >hub 0800-1-INSTAN (467826) > ======================================================================================== > > -- > Unsubscribe: kirim email kosong ke >[EMAIL PROTECTED] > Arsip, FAQ, dan info milis di http://linux.or.id/milis > Tidak bisa posting? Baca: > http://linux.or.id/problemmilis > http://linux.or.id/tatatertibmilis > ======================================================================================== Akses Internet TELKOMNet-Instan beri Diskon s.d. 50 % khusus untuk wilayah Jawa Timur. Informasi selengkapnya di www.telkomnetinstan.com atau hub 0800-1-INSTAN (467826) ======================================================================================== -- Unsubscribe: kirim email kosong ke [EMAIL PROTECTED] Arsip, FAQ, dan info milis di http://linux.or.id/milis Tidak bisa posting? Baca: http://linux.or.id/problemmilis http://linux.or.id/tatatertibmilis -- Unsubscribe: kirim email kosong ke [EMAIL PROTECTED] Arsip, FAQ, dan info milis di http://linux.or.id/milis Tidak bisa posting? Baca: http://linux.or.id/problemmilis http://linux.or.id/tatatertibmilis
