Help! any other examples (gimme examples please ;) )?
I have tried to set up the firewal package on s.u.s.e 6.4 and use example 2 from the EXAMPLES file as a template for my system. However the masqurading doesn't work? has anyone got a working config file that may help me ? im trying to get all machines on my network to be ipmasq'd for pinging telnet etc etc but i require all http access to go through squid. Please help............... im losing my mind!!!! StOo
-----BEGIN PGP SIGNED MESSAGE----- I'm using something like that :input ACCEPT :forward ACCEPT :output ACCEPT - -A input -s 192.168.1.0/24 -d 0/0 80:80 -p tcp -j REDIRECT 3128 - -A forward -s 192.168.1.0/24 -d 192.168.1.0/24 -p all -j ACCEPT -i eth1 - -A forward -s 192.168.1.0/24 -d 0/0 -p all -j MASQ Those go into a file (eg /etc/ipchains) an then issue the command ipchains-restore </etc/ipchains. Of course you should replace the IPs and proxy port as suited and add your rules. - --- Bogdan Zapca System Administrator SC EcoSoft SA Internet Service Provider 1-7 Deva st, Cluj-Napoca, Romania Tel: +40 64 199696 PGP: http://www.itotal.ro/lupe@admin2.ecosoft.ro.pgp http://www.ecosoft.ro On Fri, 11 Aug 2000, Stuart Hodgkinson wrote:
I have tried to set up the firewal package on s.u.s.e 6.4 and use example 2 from the EXAMPLES file as a template for my system. However the masqurading doesn't work? has anyone got a working config file that may help me ? im trying to get all machines on my network to be ipmasq'd for pinging telnet etc etc but i require all http access to go through squid. Please help............... im losing my mind!!!!
StOo
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
-----BEGIN PGP SIGNATURE----- Version: 2.6.3i Charset: noconv iQCVAwUBOZQk8NPv6ylvTc6pAQH2hAP9GDSiO7yfCZMV6tsQkdq3UhpVBEZVJYnI tw1B4tAGDOtUQmSrMcVLL8Bygqp9cwO5NhC74fdkgk8W5e+A+PaldfzMws3CJYow 3zu5ZyYB2+lxU1RW7nzEtdCBaC+Wlz060Rxy4X6aZlmExIZGT7KdYoCXc/284TbS EuObrmSZt4I= =EWwM -----END PGP SIGNATURE-----
ok people heres the state of play with what i've got going. SuSE 6.4 ppp dynamic ip I have configured the firewall script in rc.config.d to match that of example2 that is available in the EXAMPLES FILE. START_FW is on so everything is started at boot time. One thing i have noticed is that it mentions that i dont have a local DNS running, which is confusing but thats in the example so i left it in and it doesn't return a failure at boot time so....... I have another test linux box on the network which is set to use the server as the gateway. The firewall log file logs every packet from the network but the masqing doesnt work if i try to ping the servers dynamic ip address i get nothing. What have i missed guys? ive even tried configing from the masqurading how-to and I cant get that to work either? My brain currently resembles a fried chicken!!!!!!
participants (2)
-
Bogdan Zapca
-
Stuart Hodgkinson