On Wed, Apr 18, 2001 at 02:13:34AM +1000, Kevin Easton wrote: > ipmasq is the go. ipmasq is cool. ipmasq rocks your world. > > Just setup your internet access on the gateway machine, then when it's all > working, apt-get install ipmasq - and you'll have ipmasquerading for all > your local networks. No configuration required. > > Well, it blew me away anyway. > > - Kevin. > > (And if you want to add any custom firewall rules, just add your own script > to /etc/ipmasq/rules/).
On that note, I would like to see some example scripts that address that issue. As part of the upcoming task-harden, it would be nice if someone would take on the task of adding .rul files which close most of the ports - perhaps a simple script which checks what services you have (www, ssh, etc) and leaves only those ports between 1-1024 open to the outside world.