LINUX.IE, website of the Irish Linux Users' Group
Tux rules!

   
Home
New Users
Articles
Download
Projects
Community
Vendors

  Print Version
Email to...
 
Archives:


planetILUG

Recent News

News Archive


Join the
ILUG
on FaceBook


Join the
ILUG
on LinkedIn


Join the
ILUG SETI
Group



















 
 :: Mailing Lists

[CLUG] Linux gateway

[CLUG] Linux gateway

Kevin Philp kphilp at cybercolloids.net
Sun Feb 2 16:31:52 GMT 2003 

To make it even easier: I have Mandrake 9.0 installed on my gateway which runs 
masquerading and nat out of the box, we have a mix of windows and linux 
workstations. The gateway masqurerades everyones internet connect with the 
following little script for setting up nat

iptables -A INPUT -i ppp0 -m state --state NEW,INVALID -j DROP
iptables -A FORWARD -i ppp0 -m state --state NEW,INVALID -j DROP
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward

I got the little script from the Linux 2.4 NAT HOWTO at:

http://netfilter.samba.org/unreliable-guides

We added the forward and input drop lines at the same time it blocks any 
baddies trying to get in.

Kevin.


On Sat 01 Feb 2003 18:58, David Dorgan wrote:
 > Most enjoyable pints. But back to business... anyone got any pointers to
 > well-written HOWTO's on setting up a Linux gateway? It would be nice if it
 > was an ISDN gateway on a Red Hat box being accessed by a Windows client, 
but
 > hey, I'm not fussy. :)
 
 Not being smart, but you could setup an openbsd NAT gateway
 with funky nat and filtering in about 30 minutes,
 including the install time.
 Just get the base, (you can do the ports later) 
 setup some basic pf and nat rules and you can do your
 port address translation or whatever else you want
 later, very easy syntax to learn.
 
 If you did want to go down the linux route, install debian,
 depending on what version you install, you may have to recompile
 the kernel with ip masq support.
 Anywho most of the information you require could
 be found at http://www.fifi.org/doc/iptables/html/NAT-HOWTO.html
 
 > adam
 David.
 _______________________________________________
 Cork maillist  -  Cork at linux.ie
 http://www.linux.ie/mailman/listinfo/cork

More information about the Cork mailing list
Read this without the formatting.
                                                                                                    

  

Hosted by HEAnet


 Maintained by the ILUG website team. The aim of Linux.ie is to support and help commercial and private users of Linux in Ireland. You can display ILUG news in your own webpages, read backend information to find out how. Networking services kindly provided by HEAnet, server kindly donated by Dell. Linux is a trademark of Linus Torvalds, used with permission. No penguins were harmed in the production or maintenance of this highly praised website. Looking for the Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
RSS Version
Powered by Dell