Re: IPTABLES - Allow Internal HOST with Public IP through Firewall

From: Ansgar -59cobalt- Wiechers <usenet-2008@xxxxxxxxxxxxxxxx>
Date: Tue, 1 Jul 2008 00:50:23 +0200 (CEST)

redmondmj@xxxxxxxxx wrote:

I am new to IPTABLES. I have setup and Ubuntu 8.04 Server running
ebox. It is running DHCP (192.168.1.0-250), NAT, DNS, Squid
Transparent Proxy. All of the firewall rules were configured using
ebox's firewall module.

Basic setup:
Eth0 - external interface 12.32.12.2 (GW 12.32.12.1) - Internet

Eth1 - internal Interface 192.168.1.254

I have a host on the internal network that I need to assign a public
IP to allow unrestricted access to the internet. 12.32.12.3...

You don't need a public IP address for unrestricted access to the
Internet. Who told you such nonsense?

Please describe what exactly you're trying to achieve, and also post
your current ruleset.

cu
59cobalt
--
"If a software developer ever believes a rootkit is a necessary part of
their architecture they should go back and re-architect their solution."
--Mark Russinovich
.

Next by Date: Re: Firewall to Staff Ratio
Next by thread: Re: IPTABLES - Allow Internal HOST with Public IP through Firewall
Index(es):
- Date
- Thread

Relevant Pages

Re: Cant access the Internet from behind a 192.168.1.x net using natd
... computer without a firewall. ... Can't access the Internet from behind a 192.168.1.x net using natd ... > Here's one set of firewall rules I tried: ... > # End of required user input if you only intend to allow ssh connections ...
(FreeBSD-Security)
Re: Disable internet access for a single user on multi-user XP Pro: Possible?
... There are ways to disable internet explorer for a particular user, ... change firewall rules or use a product like Kerio that password protects firewall ... > This is WindowsXP Pro install where 3 people have passworded user accounts. ...
(microsoft.public.windowsxp.security_admin)
Re: TCP Forwarding with ICMP Dest Unreachable
... > the gateway for access to the Internet. ... > Is there any fiddling I could do with the firewall rules, ... to the sender with a type 3 icmp packet, it puts the original packet in ... the data segment. ...
(comp.os.linux.security)
Re: Wireless Access point needs subnet?
... The impression I got from the original message, ... could access the internet, ... showed the problem to be caused by the firewall rules. ... Fundamentalism is fundamentally wrong. ...
(comp.os.linux.networking)
How to get my 2 ethernet cards to work
... I also get "failed" when start up the computer on both of my network ... I can get to the internet (eth1). ... Output: "route: netmask 000000ff doesn't make sense with host route" ...
(comp.os.linux.networking)