[Techtalk] Firewall script sample

James james at james-web.net
Tue Jun 11 22:56:34 EST 2002 

You'd use DNAT rules in iptables.  For example, for SMTP mail:

$IPTABLES -t nat -A PREROUTING -p TCP -i $INET_IFACE -d $MAIL_IP --dport
25 -j DNAT --to-destination $DMZ_MAIL_IP

Where $INET_IFACE is your external interface, $MAIL_IP is your public
mail IP and $DMZ_MAIL_IP is your private LAN IP for the mail server.

- James

> -----Original Message-----
> From: techtalk-admin at linuxchix.org 
> [mailto:techtalk-admin at linuxchix.org] On Behalf Of jhazer at emailko.com
> Sent: Tuesday, June 11, 2002 7:37 PM
> To: techtalk at linuxchix.org
> Cc: newchix at linuxchix.org
> Subject: [Techtalk] Firewall script sample
> 
> 
> Can anyone pls. help me to have an overview of how my 
> firewall script will look like with this kind of setup:
> 
> Webserver (intranet only)
> Mail server            ----> Firewall ---> Internet             
> DNS Caching                  Dial-up        
> Squid Caching
> 
> 
> Werein the webserver, mail server, etc. will be on the same 
> machine. While the firewall and the modem (for dial-up) will 
> be on a separate PC. I realy am confused on how i will set it 
> up. I have read a tutorial about iptables and shamelessly i'm 
> still lost and confused. Lots of questions arises in my mind. 
> Like. How will i configure my firewall to allow mails and 
> forward it to the mail server. Same with DNS and Squid. How 
> will i allow it from the firewall.
> 
> I'm really sorry for this newbie question. But i've read a 
> lot of Howto's, from ipmasquerading to iptables and i'm still 
> confused. Hope anyone can guide me. Thank you very much.
> 
> -JhAzEr-
> 
> 
> _____________________________________________
> www.bahayKO.com ~ my Filipino Homepage!
> 
> Going home for vacation?  Book your travel arrangements with 
> us. send us an email at travel at bahayKO.com and get a quote!
> 
> Chat with other Filipinos all over the world at www.bahayKO.com/chat 
> 
> Get PAID from owning a Mobile Phone - 
> http://www.dynamicsms.com.au/intro.asp?ref=65085&refc=431
> 
> 
> _______________________________________________
> Techtalk mailing list
> Techtalk at linuxchix.org 
> http://mailman.linuxchix.org/mailman/listinfo/> techtalk
>

More information about the Techtalk mailing list