S. K. Goel wrote:
> 
> You add following commands in /etc/rc.d/rc.local
> echo "1" > /proc/sys/net/ipv4/ip_forward
> /sbin/iptables -F FORWARD
> /sbin/iptables -F INPUT
> /sbin/iptables -F OUTPUT
> /sbin/iptables -P INPUT  ACCEPT
> /sbin/iptables -P OUTPUT  ACCEPT
> /sbin/iptables -P FORWARD ACCEPT
> /sbin/iptables -t nat -A POSTROUTING -s Local-IP -j SNAT --to  Public-IP
> 
> I am using linux as a router in more than 250 locations.
> 

errr.. dont you think you're being a bit generous with those settings ? 
are you really really sure you dont want any policy whatsoever for any 
chain's

- KB

-- 
Karanbir Singh : http://www.karan.org/ : [EMAIL PROTECTED]

_______________________________________________
ilugd mailinglist -- ilugd@lists.linux-delhi.org
http://frodo.hserus.net/mailman/listinfo/ilugd
Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi 
http://www.mail-archive.com/ilugd@lists.linux-delhi.org/

Reply via email to