I use ipchains to Firewall and masquerade my internal subnet. Port 80 on
the Firewall's external interface is sent to an internal web server using
ipmasqadm portfw. I can access the web server from outside the subnet, but
I have to use the internal address to access it from within. What's w
I'm trying to set up a simple firewall/router, but I seem to be having
some difficulties, so it is time for me to ask the gurus. This is what
I have to work with:
|far hosts|---|Router|---|Internet|---|Router|---|Linux
RTR/FW|---|switch|---|near host|
et
Steve wrote:
> ipchains -A input -p tcp -j DENY -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 1:1023
> ipchains -A input -p ucp -j DENY -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 1:1023
> ipchains -A input -p tcp -j ACCEPT -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 80
> ipchains -A input -p udp -j ACCEPT -s 0.0.0.0/0 -i eth0 -
Steve:
I believe you will want it set up like this:
# HTTP Client (80) #
/sbin/ipchains -A input -p tcp ! -y -i eth0 \
-s 0.0.0.0/0 80 -d 1024:65535 -j ACCEPT
# HTTP Server (80) #
/sbin/ipchains -A
I am new to ipchains and am trying to write a chain to allow www access through
port 80. I have the following 4 chains:
ipchains -A input -p tcp -j DENY -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 1:1023
ipchains -A input -p ucp -j DENY -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 1:1023
ipchains -A input -p tcp -j A
