saya menggunakan shorewall versi 2.0 ini konfigurasi shorewallnya..
shorewall.policy #SOURCE DEST POLICY LOG LIMIT:BURST # LEVEL loc net ACCEPT loc fw ACCEPT fw net ACCEPT net fw ACCEPT net all DROP info # # THE FOLLOWING POLICY MUST BE LAST # all all REJECT info #LAST LINE -- DO NOT REMOVE
shorewall.interfaces
#ZONE INTERFACE BROADCAST OPTIONS
#
loc eth1 detect routeback
net eth0 detect
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
shorewall.masq
#INTERFACE SUBNET ADDRESS PROTO PORT(S)
eth0 eth1
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
shorewall.zones
#ZONE DISPLAY COMMENTS
net Net Internet
loc Local Local networks
#LAST LINE - ADD YOUR ENTRIES ABOVE THIS ONE - DO NOT REMOVE
shorewall.rules
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/
# PORT PORT(S) DEST
REDIRECT loc 3128 tcp www - !192.168.0.3
ACCEPT net fw tcp http,imap,pop3,smtp,ftp,80 -
ACCEPT loc fw tcp http,imap,pop3,smtp,ftp,20,109 -
ACCEPT loc:192.168.0.2,192.168.0.201,192.168.0.6 fw tcp 22
DNAT net loc:192.168.0.200 tcp 80 - 202.154.x.x
REJECT net fw tcp 139
AllowPing loc fw
AllowPing loc net
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
shorewall.conf standard belum ada yang dirubah...
dan untuk meblacklist di shorewall.blacklist itu dimasukkan alamat httpnya apa ip addressnya ??? terima kasih atas pencerahannya
zaniesh
========================================================================================
Akses Internet TELKOMNet-Instan beri Diskon s.d. 50 % khusus untuk wilayah Jawa Timur.
Informasi selengkapnya di www.telkomnetinstan.com atau hub 0800-1-INSTAN (467826)
========================================================================================
-- Unsubscribe: kirim email kosong ke [EMAIL PROTECTED] Arsip, FAQ, dan info milis di http://linux.or.id/milis Tidak bisa posting? Baca: http://linux.or.id/problemmilis http://linux.or.id/tatatertibmilis
