I am about to install a RedHat 8.0 box with iptables to act as our
firewall for our internal network that consists of 20 machines.
Besides doing a -j drop on our external interface when receives a packet
with source equal to our internal network, what other measures we have
to take?
We do host an
What do you mean?
If that machine is a firewall and is running Squid and you do not want
people to access internet, but only using Squid, then:
1- create squid rules to allow only the ip you want from the inside to
the outside.
2- using ipchains/iptables or some other port blocking software,
rest