Jason sent me the following. I keyed into script and ran. Cannot browse internet from either the firewall or box behind firewall (win2k).
I ran iptables -L -n and things did change from an empty set of tables. Do not know how to read the output so I am flying blind in that area. ================== iptables -N block iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A block -m state --state NEW -i ! eth0 -j ACCEPT iptables -A block -j DROP iptables -A INPUT -j block iptables -A FORWARD -j block for your case--i replaced ppp0, with eth0 (your external interface) in the above example you will also need a NAT rule... from: http://netfilter.samba.org/documentation/HOWTO//NAT-HOWTO-4.html#ss4.1 iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE once again, i replaced ppp0 with eth0 in the above example for your situation now, enable ip forwarding: echo 1 > /proc/sys/net/ipv4/ip_forward ================= Ron Darling President Ix.sys, Inc. http://www.ixsys.com [EMAIL PROTECTED] 817.377.0925
