Re: IPTables help

From: Migrating Coconut (strider_ae@excite.com.nospam)
Date: 12/08/02


From: "Migrating Coconut" <strider_ae@excite.com.nospam>
Date: Sun, 08 Dec 2002 21:49:30 GMT


    Thanks.

    mc

"Sleepy" <void@rawbw.com> wrote in message
news:uv6m6ods91s6d@corp.supernews.com...
> The OUTPUT chain is for packets going out from the machine running as
> firewall.
> POSTROUTING is for packets that need to be massaged before they are sent
> out.
> I belive what yu asking is, the DNAT rules go where?
> in my setup, 4 machines behind the firewall box , I have
> #iptables -t nat -A POSTROUTING -o $EXT -j MASQUERADE
>
> I hope this helpes. dont forget the state i.e
> iptables -A FORWARD -i $INT -o EXT -m state --state
NEW,RELATED,ESTABLISHED
> -j ACCEPT
>
> Migrating Coconut wrote:
>
> > I'm starting to work out the rule sets for a Linux IPTables firewall
> > for
> > my home network. I'll be using IP masquerading to give the internal
> > machines internet access. I have the basic rules down, but the
forwarding
> > part confuses me a little. If I'm doing a DNAT rule, do I put the rule
in
> > the POSTROUTING or OUTPUT chain? I have info on how to build the rules,
> > but I can't find any on where to put them and how the tables relate to
> > each
> > other. Any information you could provide would be wonderful. Thanks in
> > advance,
> >
> > mc
>
> --
> ".. and God said let be a command line, and there be a command line.After
> God made the command line He liked the the shell prompt. and wanted to
take
> some notes and God said let there be an editor, and there be "vi" "