Gordon Messmer responded
>Jack Byers wrote:
> >I went back to your script ( a newer one i think) and i was getting
>>more comfortable with the syntax, but still nervous that i didnt
>>exactly know just where to put MY ip numbers etc.,
>The latest verison has much more verbose comments describing the effects
>of each variable. Could you take a look at it now, and see if it's any
>less confusing? If not, let me know what I should document better.
>>exactly what services being denied, etc.,
>All of them, unless you tell it otherwise :)
>Thanks,
>MSG
Gordon:
I have to say I am still not clear on how to use your variables.
It would help me enormously if you had specific identifications
for your variables
for a simple standard case: 1masqingbox, 1masqedbox
-- a masqing linuxbox
internet conncection via eth0, say 299.888.1.1 or your choice
with eth1 for internal lan say 192.168.1.1 or your choice
-- a masqed computer on that internal lan with say ip 192.168.1.2
from your script:
# MASQ_NET allows you to specify hosts or networks that should be
masqueraded.
MASQ_NET="192.168.1.0/24"
I think your PARANOID_DEV="eth1" is consistent with my eth1, notsure
I think your script MASQ_NET="192.168.1.0/24" also consistent here,
but again, I need confirmation.
from here on I get _lost_:
I dont know where I would use my internet iface = "eth0"
or where eth0 ipaddr is to be used.
This eth0 info was virtually the first thing I identified
in the Burgiss script.
you seem to have a mix of
192.168.1 for the masqnet 192.168.1.0/24
192.168.0 for a commented out #PARANOID_ADDR="192.168.0.2"
192.168.10 for a commented out #FORWARD_NET="192.168.10.0/24"
none of these seem to connect to anything I think I need for "eth0"
if the 192.168.0 is for the internal lan, then inconsistent with
your MASQNET using 192.168.1
is paranoidaddr intended as your masqingbox or the masqdbox?
192.168.0 and 192.168.10 I dont see useable at all for my
standard 1masqingbox, 1 masqedbox
I am not sure what this FORWARD_NET is for,
it doesnt seem to have anything to do with my simple case,
so likely this is for advanced use.
If so, fine, but I still dont know how to feed in my eth0 info.
from your script:
# FORWARD_NET allows you to specify networks whose IP traffic will be
# forwarded/routed. ONLY networks listed here will be forwarded.
#FORWARD_NET="192.168.10.0/24"
your further response to kerryb didnt help me either:
>FORWARD_NET should be used if you have a network that you want to do
>plain routing on. MASQ_NET indicates a network that you want to
>masquerade. Your network should only be listed under one of those.
which 'your network' ?
I (and kerryb i think) have both
an internal lan network eth1 in my case
and a connection-to-internet network eth0 in my case
are either of these to be used for your FORWARD_NET ? or not?
I think I am lost because you have a sophisticated script.
But you dont give precise enough definitions so that newbies,
even notsonewbies can easily see what to do for
almost the simplest case: 1masqingbox, 1 masqd box
regards,
Jack
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
