[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Total Newbie, please be patient...

Subject: Re: [cobalt-users] Total Newbie, please be patient...
From: Balázs Nagy <bn@xxxxxxxxxxxxxx>
Date: Wed Apr 5 11:32:19 2000

> > "Jay Patterson" <jay@xxxxxxxx> writes:
> > > What I think Gerald mean't was "out-of-the-box"
> >
>         Jens Kristian Søgaard wrote
> >  Well, you need to enter a few commands as root. That's pretty much as
> > "out-of-the-box" as it gets.
> >
> Would you please enlighten me.
> What are the few commands that are entered to enable routing and IP
> Masquerading or (NAT)?
>

Assuming you have two NICs, eth0 is your intranet, eth1 goes to the
router/ATM/what have you and your internal net is 192.168.0.0:

#!/bin/sh
route add -net 192.168.0.0 netmask 255.255.255.0 eth0
route add default eth1
ipchains -P forward DENY
ipchains -A forward -i eth1  -j MASQ

the first time you also need this:
echo 1 > /proc/sys/net/ipv4/ip_forward

This is a basic firewall, and don't blame me if people hack fairly easily
your system. If you want to get a stronger firewall, we can take this
off-list...

Follow-Ups:
- Re: [cobalt-users] Total Newbie, please be patient...
  - From: Balázs Nagy

References:
- RE: [cobalt-users] Total Newbie, please be patient...
  - From: Jerry Waugh

Prev by Date: Re: [cobalt-users] IP vs Name Based Hosting
Next by Date: Re: [cobalt-users] RaQ3 SSL and FP2K
Previous by thread: RE: [cobalt-users] not sending mail to AOL?
Next by thread: Re: [cobalt-users] Total Newbie, please be patient...

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index