At 12:27 AM 03/27/00 +0200, Rogier Maas wrote:
echo 1 > /proc/sys/net/ipv4/ip_forward ipchains -I forward -j MASQ
The first line enables IP-forwarding (neccesary to o masquerading), the second line tells the kernel it should masquerade. This could be a security-hole, because it will not only masquerade your 192.168.6.0-network to the outside world, but also vicce-versa, so you could specify some more parameters (man ipchains).
Would you be interested in describing the security considerations on the list? I've been through the man ipchains a few times and I'm still learning. But it would be quite helpful to have some of the security risks discussed, and the ipchains commands used to plug those holes. Thanks, Bill Moseley mailto:moseley@hank.org -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/