Hello!
Yesterday one of may servers gave up her life and went to the
heaven of linuxes. So I got a machine and reinstalled a new Debian.
Everything started so well, my latest CD set was crappy. So I have to
got a new one. And I didn't find the backups. Never mind, it was just
a simple network only defended by ipchains and so on. And I have to
work fast. So, before anything else I issued the command:
ipchains -A forward -p tcp -s 10.0.0.0/24 -d any/0 -j MASQ
And nothing happened. When I installed squid the users can use the
net but weren't able to access the pop3 server outside. Eventually
I removed the line and typed another:
ipchains -A forward -p tcp -s 10.0.0.0/255.255.255.0 -d 0.0.0.0/0 -j MASQ
And everything started to work!!! Very starnge. Right now I can harden
the system at network level but that was very strange. Does anyone know
anything about it? Why the first rule didn't work? As I remember
I used the above rule before and it worked. Is it debian (the ipchains
in potato) specific? I find nothing about it in ipchains related manuals.
Bye,
Ago
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
