Please do not post HTML e-mail to this list, or any list for that matter. Use firestarter to control the firewall. It is much easier that way.
MB > >--------------020903030805030901060805 >Content-Type: text/plain; charset=us-ascii; format=flowed >Content-Transfer-Encoding: 7bit > >Hi Pramod > >Try out Iptables, it has better features than ipchains. > >Enable IP forwarding between the interfaces - remember to disable this >if you're going to unload the Iptables rules. > > echo "1" > /proc/sys/net/ipv4/ip_forward > >Load the NAT modules - needed only if you compiled as modules > > modprobe iptable_nat > modprobe ip_nat_ftp (needed only if you >plan on using FTP) > >Enable IP masquerading - Use if your eth0 has a dynamic IP address. > > iptables -t nat -A POSTROUTING -o eth0 -j >MASQUERADE > >Enable source NAT - Use if your eth0 has a static IP address. > > iptables -t nat -A POSTROUTING -o eth0 -j >SNAT --to ip_address_of_eth0 > >Pramod Krishna K wrote: > > >> Hi , >> >> >> >> I've got a small network in which my >> mailserver(sendmail),proxy(squid),webservers & Name servers are placed. >> >> I want to setup a firewall b/w the router & my LAN. >> >> Can anyone send in a ipchains firewall script which i can customize to >> my requirements to make it a secure network. >> >> >> >> Regards, >> >> Pramod >> >> >>------------------------------------------------------------------------ >> >>**************************Disclaimer************************************ >> >> >>Information contained in this E-MAIL being proprietary to Wipro Limited >>is 'privileged' and 'confidential' and intended for use only by the >>individual or entity to which it is addressed. You are notified that any >>use, copying or dissemination of the information contained in the E-MAIL >>in any manner whatsoever is strictly prohibited. >> >> >>***************************************************************************** >> > > > >--------------020903030805030901060805 >Content-Type: text/html; charset=us-ascii >Content-Transfer-Encoding: 7bit > ><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> ><html> ><head> > <title></title> ></head> ><body> >Hi Pramod<br> ><br> >Try out Iptables, it has better features than ipchains.<br> ><br> >Enable IP forwarding between the interfaces - remember to disable this if >you're going to unload the Iptables rules.<br> ><br> > > echo "1" > /proc/sys/net/ipv4/ip_forward<br> ><br> >Load the NAT modules - needed only if you compiled as modules<br> ><br> > > modprobe iptable_nat<br> > > modprobe ip_nat_ftp (needed only if you plan >on using FTP)<br> ><br> >Enable IP masquerading - Use if your eth0 has a dynamic IP address. <br> ><br> > > iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE ><br> ><br> >Enable source NAT - Use if your eth0 has a static IP address.<br> ><br> > > iptables -t nat -A POSTROUTING -o eth0 -j SNAT >--to ip_address_of_eth0<br> ><br> >Pramod Krishna K wrote:<br> ><blockquote type="cite" > cite="mid006001c1ecff$b83a7920$[EMAIL PROTECTED]"> > <meta http-equiv="Content-Type" content="text/html; "> > > <meta content="MSHTML 6.00.2436.1" name="GENERATOR"> > > <style></style> </blockquote> ><br> ><blockquote type="cite" > cite="mid006001c1ecff$b83a7920$[EMAIL PROTECTED]"> > <div><font face="Arial" size="2">Hi ,</font></div> > > <div> </div> > > <div><font face="Arial" size="2">I've got a small network in which my >mailserver(sendmail),proxy(squid),webservers >& Name servers are placed.</font></div> > > <div><font face="Arial" size="2">I want to setup a firewall b/w the router > & my LAN.</font></div> > > <div><font face="Arial" size="2">Can anyone send in a ipchains firewall >script which i can customize to my requirements to make it a secure >network.</font></div> > > <div> </div> > > <div><font face="Arial" size="2">Regards,</font></div> > > <div><font face="Arial" size="2">Pramod</font></div> > <pre wrap=""><br><hr width="90%" >size="4"><br>**************************Disclaimer************************************<br><br><br>Information > contained in this E-MAIL being proprietary to Wipro Limited<br>is 'privileged' and >'confidential' and intended for use only by the<br>individual or entity to which it >is addressed. You are notified that any<br>use, copying or dissemination of the >information contained in the E-MAIL<br>in any manner whatsoever is strictly >prohibited.<br><br><br>*****************************************************************************<br></pre> ></blockquote> ><br> ><br> ></body> ></html> > >--------------020903030805030901060805-- > > > >_______________________________________________ >Redhat-list mailing list >[EMAIL PROTECTED] >https://listman.redhat.com/mailman/listinfo/redhat-list > -- e-mail: [EMAIL PROTECTED] It is God's job to forgive bin Laden. It is our job to set up the meeting. U.S. Marine Corp. Visit - URL: http://www.vidiot.com/ (Your link to Star Trek and UPN) _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list