Sonny Parlin wrote: > > Brandon Yu writes: > > I am new to Linux and IP Masquerade, please bear..... > > /sbin/ipfwadm -F -p deny > > > > # 3 following commands flush system > > /sbin/ipfwadm -F -f > > /sbin/ipfwadm -I -f > > /sbin/ipfwadm -O -f > > > > # forward internal traffic > > /sbin/ipfwadm -F -a m -S 192.168.1.0/24 -D 0.0.0.0/0 > > > > # Forward DNS traffic > > /sbin/ipfwadm -F -a masquerate -b -P udp -S 0.0.0.0/0 53 -D 192.168.1.0/24 > > > > # Forward News > > /sbin/ipfwadm -F -a accept -b -P tcp -S 192.168.1.0/24 1024:65535 -D > > 0.0.0.0/0 119 > > /sbin/ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 119 -D 192.168.1.0/0 > > 1024:65535 > > > > Something about the last two lines bugs me...(I could be wrong) but I would > change those lines to something like: > > /sbin/ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 192.168.1.0 119 > /sbin/ipfwadm -F -a accept -b -P tcp -S 192.168.1.0 119 -D 0.0.0.0/0 > 1024:65535 > > It looks like the way you have it set up is a bit > backwards...(ofcourse my thinking could be backwards, it's WAY too > early right now!) These caught my eyes as well. Why are you having 1024:65535 in there? Joe -- Joachim Feise Microsoft Certified Solution Developer mailto:[EMAIL PROTECTED] http://www.ics.uci.edu/~jfeise/ mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] --------------------------------------------------------------------- --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For daily digest info, email [EMAIL PROTECTED]
