# The 'External Interface' is the connection to your # ISP via Ethernet, xDSL, Cable Modem, T1, etc. This # is the Internet side, where the bad guys hang out. # EXTERNAL_INTERFACE="eth0" # Unsecure (Red) Interface <--- Edit here! EXTERNAL_IP="11.222.111.221" # Unsecure (Red) IP address <--- Edit here!
# Your ISP's servers # # Valid responses here consist of: # # 1. A single IP address in CIDR notation (ex: 192.168.1.1/32) # # 2. A network IP address range in CIDR notation (ex: 192.168.1.0/24) # # 3. The _expression_ 'any/0', which matches any IP address. # # Note that in CIDR (Classless Internet Domain Routing) notation, the # number following the slash mark is the number of bits in the network # portion of the address. This notation replaces the old Class-A (CIDR /8), # Class-B (CIDR /16), and Class-C (CIDR /24) netmasks. CIDR addressing # greatly simplifies sub-netting as netmasks can be on any bit-boundary. # DHCP_SERVER_IP="my.dhcp.server" # ISPs DHCP Server (if known) SMTP_SERVER="my.smtp.server" # ISPs External SMTP Mail Server POP_SERVER="my.pop3.server" # External POP3 Server, if any MY_IMAP_SERVER="my.imap.server" # External IMAP Server, if any NEWS_SERVER="my.news.server" # External NNTP News Server, if any SNEWS_SERVER="your.snews.server" # External Secure NNTP News Server, if any MY_NEWS_FEED="my.news.feed" # ISP NNTP News Feed, if any
POP_SERVER="pop3.brturbo.com"e os outros eu não iria precisar pois são de news e etc... correto? outra coisa... /etc/firewall/firewall.conf.iptables é o nome e localização do arquivo... só eu iniciar o iptables que ele carrega esse script automaticamente?
link para o script completo que o Douglas A. Augusto passou está aqui:
http://www.malibyte.net/iptables/scripts/fwscripts.html
Maurício de Ávila - mauricio@elipse.net Dauertec Ltda - www.dauertec.com.br Fone/Fax: (47) 326-0556 |