lug-bg: iptables and ADSL

2003-12-04 Thread Vasko Tomanov 
Imama server s ADSL vrazaka.. obasthe adresa koito polutshavam ot ADSL-a se
meni vseki pat kato se restartne vrazkata po niakakva pritshina..

iskam w definiciata na pravilata na IPTABLES da zadan ne tvardo IP s maska
a  IP-to na ppp0 naprimer ?

kak moga da go nparavia tova za da ne mi se nalaga sled vseki restart da
opraviam ip tables

vasko


A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: iptables and ADSL

2003-12-04 Thread Peter Georgiev 
On Thu, 4 Dec 2003 10:18:54 -
Vasko Tomanov [EMAIL PROTECTED] wrote:

 Imama server s ADSL vrazaka.. obasthe adresa koito polutshavam ot
 ADSL-a se meni vseki pat kato se restartne vrazkata po niakakva
 pritshina..
 
 iskam w definiciata na pravilata na IPTABLES da zadan ne tvardo IP s
 maska a  IP-to na ppp0 naprimer ?
 
 kak moga da go nparavia tova za da ne mi se nalaga sled vseki restart
 da opraviam ip tables
 

 IP-firewall 
   :

IFCONFIG=/usr/sbin/ifconfig
EXTIF=ppp0
GREP=/bin/grep
AWK=/bin/awk
SED=/bin/sed

IP=`$IFCONFIG $EXTIF | $GREP 'inet addr' | $AWK '{print $2}' | 
$SED -e 's/.*://'`

HTH Pesho

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: iptables and ADSL

2003-12-04 Thread Hristo Erinin 
,

On Thu, 4 Dec 2003 10:18:54 -
Vasko Tomanov [EMAIL PROTECTED] wrote:

iskam w definiciata na pravilata na IPTABLES da zadan ne tvardo IP s
maska a  IP-to na ppp0 naprimer ?

kak moga da go nparavia tova za da ne mi se nalaga sled vseki restart
da opraviam ip tables

RTFM.
iptables(8)
MASQUERADE
This target is only valid in the nat table, in the POSTROUTING chain. 
It should only be used with dynamically assigned IP (dialup) 
connections:  if you have a static IP address, you should use the SNAT
target.  Masquerading is equivalent to specifying a mapping to the IP
address of the interface the packet is going out, but also has the
effect that connections are forgotten when the  interface  goes  down.
This  is  the correct behavior when the next dialup is unlikely to have
the same interface address (and hence any established connections are
lost anyway).

-- 
Best Regards,
Hristo Erinin


A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html