Re: IPtables and DMZ script help
hi steve
you have to configure dhcpd.conf file .
write these are commands in
/etc/rc.local file
ifconfig eth0 down
ifconfig eth1 down
ifconfig eth0 10.1.1.1
ifconfig eth1
200.62.161.110
ifconfig eth0 up
ifconfig eth1 up
route del default gw
route add default gw 200.62.161.110
iptables -t nat -I POSTROUTING -o eth1 -j
MASQUERADE
if you are using squid proxy
iptables -t nat -A PREROUTING -i eth0 -p
tcp --dport 80 -j REDIRECT --to-port 3128
----- Original Message -----
Sent: Sunday, October 19, 2003 5:28 AM
Subject: IPtables and DMZ script
help
> Hi there guys is there any one that can help me on IPtables and
DMZ.
> Perferably have a pre made script that I can mod to suit my
needs..
> This is what I need to do.
>
> External Network
(BAD)
>
>
|
>
|
>
eth1 | ppp0
>
-------------------
>
| 200.62.161.110
|
> 200.62.181.222 (network)
>
|
| eth2
> 200.62.181.229 (broadcast)
>
|
>
|--------------------------------------------------------------------------
>
|
| 200.62.181.223
|
>
|
|
>
|
|
>
|
|
|
>
|
10.1.1.1
|
|
>
|
|
>
-------------------
------------
>
--------------
---------
>
|
eth0
| WEB+mail
> |
| WEB2+sql
|
| web3 |
>
>
------------
--------------
> ---------
>
|
200.62.181.224
>
200.62.181.225
200.62.181.226
>
|
> Internal
Network (GOOD)
> Network: 10.1.1.0
> Broadcast Address
10.1.1.127
>
>
>
> One card is terminated with the
external leased line. (eth1).
> One card is connected to my hub/1 which
caters to the private lan. (eth0).
> The last card is connected to my
hub/2 takes care of my dmzone (eth2).
>
>
> --
> To
UNSUBSCRIBE, email to debian-user-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
Reply to: