[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian Firewall

On Wed, Mar 30, 2005 at 03:25:08PM +0600, Suranga Kasturiarachchi wrote:
> Dear all,
> I have two network, one is 192.168.1.X and other is 202.51.140.X. the
> 202.51.140.X is internet network. 192.168.1.X is users computers.
> sometimes I need to allow users to access there out side pop mail servers
> through the 192.168.1.X network, please help me on this matter and how I
> need to configure the firewall. My Debian woody PC have two network
> interfaces(eth0 and eth1) and one connected to 192.168.1.X network and
> other connected to 202.51.140.X network.

Put the POP server in a DMZ.  If that's not possible, port forward 110 from
the gateway machine to the internal POP server.

$IPTABLES -t nat -A PREROUTING -p tcp --dport 110 -d 202.51.140.X --to 192.168.1.X:110

You definitely want to implement a DMZ if at all possible, though.

- Matt

Attachment: signature.asc
Description: Digital signature

Reply to: