>I am port
>forwarding all ftp, smtp, and http requests to a host on the private
>network which is acting as a general server for http, smtp and ftp. I
>have also set up a bunch of tcp ports to private hosts for ICQ.
PortForwarding smtp and http are simple but forwarding FTP requires a
special IP_MASQ_FTP module. Problem is, its only available for
the 2.0.x kernels at the moment.
>The superficial question to ask is: Do I need TCP wrappers configured
>if I am using IPCHAINS.
Always. Its best to have levels of security.
>The more detailed question is: What are the functions that handle IP
>packets as they enter and leave a Linux box. Where does TCP wrappers
>intercept IP packets in this scheme, and what does it do with them.
>Similarly for IPCHAINS and Masq portfw.
IPFWADM/IPCHAINS control raw packets going to/from/in/out of the
Linux server. TCP wrappers control the access of services from remote
clients to the Linux server itself. TCPwrappers have no effect on
any other machines exept the server itself.
>Any pointers to where I can find this info. I am not adverse to reading
>source code if necessary.
I'd recommend reading TrinityOS and several of the other URLs in
Section 5.
http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html
--David
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
