[PLUG] Will pay - firewall help needed for a 2-nic RH7.0 masq gateway

[Jeff Dean <jdean@ieee.org>]

Is there anyone out there with some routing experience?  This is a masq 
box, and the gateway routes after the ipchains statement that establishes 
"-j MASQ" between the local private net and the DMZ.  Trouble is I don't 
know how to configure MASQ/ACCEPT/DENY with input/output/filter.  I've 
tried what appeared to be obvious things with the outside network but all I 
can get is off or on - I'm a newbie here.

$$$---->>> If there's someone who has some MASQ/firewall experience on 2.2 
kernels out there I'd be happy to pay you for a few hours' consulting time 
(and this should be pretty simple).  Thanks.

jd

At 07:08 PM 8/29/2001 -0400, I wrote:
> Hi everyone.  I really should just figure this out myself, but I'm in 
> quite a hurry.  I have an e-smith server (RH7.0 based mail/gateway - 
> http://www.e-smith.org) with two nics at a non-profit school.  One side is 
> on a private 10.0.0.0/16 LAN, the other is in a DMZ.  The e-smith server 
> is wide open from the inside and locked down from the DMZ (except for http 
> and smtp).  I need to limit access to the web from all inside systems 
> except my proxy servers/web filters (10.0.0.4, currently).  I'm no routing 
> guy, but can get the ipchains commands in where necessary.  Does anyone 
> know the magic, and where to put it?  I'd really appreciate your help...


Jeff Dean
jdean@ieee.org


______________________________________________________________________
Philadelphia Linux Users Group       -      http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion  -  http://lists.phillylinux.org/mail/listinfo/plug