I have an iptables firewall running on my linux box connected to the internet with a standard dialup ppp link. Now I have just connected another debian box and a windows98 box to this firewall box. So far I have only allowed ssh into the firewall box from the internal LAN. There are no ports open from the internet on the firewall box. (I use iptables to allow only established and related connections in from the internet to the firewall box.) Now I am a little confused as to how to proceed next. What I want to do is allow web browsing from the windows98 box on the LAN. What is the best way to do this? Do I need squid installed on the firewall box and then tell the windows98 box to use it as a proxy? Or do I need to setup masquerading (?NAT) in my iptables firewall to allow web browsing traffic? According to what I have been reading, you can go either way? Is this true? I am confused? Thanks for help. Mark.
Description: PGP signature