Re: two private networks and a gateway

To: debian-isp@lists.debian.org
Subject: Re: two private networks and a gateway
From: wagnerc@plebeian.com (Chris Wagner)
Date: Fri, 25 Aug 2006 18:02:05 -0400
Message-id: <[🔎] 200608252153.k7PLron12991@mail.cinternet.net>

At 02:53 PM 8/25/2006 -0600, David Bishop wrote:
>*don't* want traffic from 192.168.1.x (the cafe) to be routed to 10.0.0.x (my 
>lan), just out through my broadband connection.  How do I do that?  

Do u mean that u don't want people from the cafe to be able to access ur
private LAN?  In that case just have iptables dump anything from the 192
network destined for the 10 network.  Apply it to the interface that the 192
comes in on.

base, crude example:
iptables -N cafe
iptables -A cafe -i eth3 -s ! 192.168.1.0/24 -j DROP
iptables -A cafe -i eth3 -d 10.0.0.0/8 -j DROP

http://www.netfilter.org/documentation/index.html#documentation-howto

--
REMEMBER THE WORLD TRADE CENTER         ---=< WTC 911 >=--
"...ne cede malis"

00000100

Reply to:

Follow-Ups:
- Re: two private networks and a gateway
  - From: David Bishop <tech@gnuconsulting.com>

Prev by Date: Re: two private networks and a gateway
Next by Date: Re: two private networks and a gateway
Previous by thread: Re: two private networks and a gateway
Next by thread: Re: two private networks and a gateway
Index(es):
- Date
- Thread