From: Deim Agoston (ago at domain lsc.hu)
Date: Thu 03 May 2001 - 16:11:29 IST
Hello!
Yesterday one of may servers gave up her life and went to the
heaven of linuxes. So I got a machine and reinstalled a new Debian.
Everything started so well, my latest CD set was crappy. So I have to
got a new one. And I didn't find the backups. Never mind, it was just
a simple network only defended by ipchains and so on. And I have to
work fast. So, before anything else I issued the command:
ipchains -A forward -p tcp -s 10.0.0.0/24 -d any/0 -j MASQ
And nothing happened. When I installed squid the users can use the
net but weren't able to access the pop3 server outside. Eventually
I removed the line and typed another:
ipchains -A forward -p tcp -s 10.0.0.0/255.255.255.0 -d 0.0.0.0/0 -j MASQ
And everything started to work!!! Very starnge. Right now I can harden
the system at network level but that was very strange. Does anyone know
anything about it? Why the first rule didn't work? As I remember
I used the above rule before and it worked. Is it debian (the ipchains
in potato) specific? I find nothing about it in ipchains related manuals.
Bye,
Ago
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:10:10 GMT