Il giorno 30-03-2003 14:32, dEiMoS, [EMAIL PROTECTED] ha scritto: > l'ifconfig dice.... > > deimos:/# ifconfig > eth0 Link encap:Ethernet HWaddr 00:07:95:47:39:08 > inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:114 errors:0 dropped:0 overruns:0 frame:0 > TX packets:19 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:100 > RX bytes:15101 (14.7 KiB) TX bytes:1734 (1.6 KiB) > Interrupt:11 Base address:0xd000 > > eth1 Link encap:Ethernet HWaddr 00:50:BA:C9:C7:36 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:4766 errors:0 dropped:0 overruns:0 frame:0 > TX packets:4489 errors:0 dropped:0 overruns:0 carrier:0 > collisions:10 txqueuelen:100 > RX bytes:3208822 (3.0 MiB) TX bytes:665141 (649.5 KiB) > Interrupt:12 Base address:0xaf00 > > lo Link encap:Local Loopback > inet addr:127.0.0.1 Mask:255.0.0.0 > UP LOOPBACK RUNNING MTU:16436 Metric:1 > RX packets:279 errors:0 dropped:0 overruns:0 frame:0 > TX packets:279 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:0 > RX bytes:18219 (17.7 KiB) TX bytes:18219 (17.7 KiB) > > ppp0 Link encap:Point-to-Point Protocol > inet addr:80.116.135.14 P-t-P:192.168.100.1 Mask:255.255.255.255 > UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1492 Metric:1 > RX packets:4591 errors:0 dropped:0 overruns:0 frame:0 > TX packets:4315 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:3 > RX bytes:3096489 (2.9 MiB) TX bytes:559676 (546.5 KiB) > > mentre se scrivo iptables scrive: > deimos:/# iptables > iptables v1.2.7a: no command specified > Try `iptables -h' or 'iptables --help' for more information.
eth1 senza indirizzo ma ci è passato del traffico la usa il bridge adsl? la macchine sulla tua lan sono collegate a eth0, giusto? crea un file, magari lo chiami firewall e lo salvi in /etc/init.d con questa roba dentro: #! /bin/sh iptables -F INPUT iptables -F FORWARD iptables -A INPUT -i ppp0 -m state --state NEW -j DROP iptables -A INPUT -i eth0 -j ACCEPT iptables -P INPUT DROP iptables -A FORWARD -i ppp0 -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A FORWARD -i eth0 -j ACCEPT iptables -P FORWARD DROP iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE echo 1 > /proc/sys/net/ipv4/ip_forward una volta salvato gli dai chmod +x firewall lo carichi dando ./firewall crei un link simbolico, in modo che sia caricato al boot: ln -s /etc/init.d/firewall /etc/rc2.d/S99firewall ciao Mario
