Mailinglist Archive: opensuse-security (192 mails)

< Previous Next >
Re: [suse-security] IPchains Assistance
  • From: Chrissy <chrissy@xxxxxxxxxxxx>
  • Date: Thu, 04 May 2000 17:34:47 -0700
  • Message-id: <4.2.0.58.20000504173228.01dc7240@xxxxxxxxxxx>
The Redirect is for the same IP ..diff port.. for instance 80 -> 8080
not ip1:80 -> ip2:80

try "redir" on freshmeat.net .. also, search the security archives..we had a discussion about this issue before..

http://www.nerdherd.net too

Chrissy

At 07:12 PM 5/4/2000 -0500, KULISHdotCOM wrote:
Can someone please tell me how the following script CAN'T forward HTTP
requests
to and internal server? This is Hacker-Bait if I ever seen it.
Thanks.

#!/bin/sh

echo "Flushing Existing Rules and Setting Policies ..."
ipchains -F
ipchains -P input ACCEPT
ipchains -P output ACCEPT
ipchains -P forward ACCEPT
echo "Complete"
echo " "


echo "Initializing Kernel Level Modules ..."
echo "IP Forwarding"
echo 1 > /proc/sys/net/ipv4/ip_forward
ipmasqadm portfw -f
echo "Complete"
echo " "

echo "Initializing HTTP ..."

ipchains -A input -i eth0 -p tcp -s 0/0 1024:65535 -d 207.177.58.56 80 -j
ACCEPT
ipchains -A forward -p tcp -s 10.1.1.2 80 -j MASQ
ipmasqadm portfw -a -P tcp -L 207.177.58.56 80 -R 10.1.1.2 80
echo "Incoming HTTP requests Forwarded To 10.1.1.2"
echo "Complete"
echo " "



---------------------------------------------------------------------
To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
For additional commands, e-mail: suse-security-help@xxxxxxxx


< Previous Next >
This Thread
References