Jeff Dean on Sat, 1 Sep 2001 21:10:09 +0200 |
Is there anyone out there with some routing experience? This is a masq box, and the gateway routes after the ipchains statement that establishes "-j MASQ" between the local private net and the DMZ. Trouble is I don't know how to configure MASQ/ACCEPT/DENY with input/output/filter. I've tried what appeared to be obvious things with the outside network but all I can get is off or on - I'm a newbie here. $$$---->>> If there's someone who has some MASQ/firewall experience on 2.2 kernels out there I'd be happy to pay you for a few hours' consulting time (and this should be pretty simple). Thanks. jd At 07:08 PM 8/29/2001 -0400, I wrote: Hi everyone. I really should just figure this out myself, but I'm in quite a hurry. I have an e-smith server (RH7.0 based mail/gateway - http://www.e-smith.org) with two nics at a non-profit school. One side is on a private 10.0.0.0/16 LAN, the other is in a DMZ. The e-smith server is wide open from the inside and locked down from the DMZ (except for http and smtp). I need to limit access to the web from all inside systems except my proxy servers/web filters (10.0.0.4, currently). I'm no routing guy, but can get the ipchains commands in where necessary. Does anyone know the magic, and where to put it? I'd really appreciate your help... Jeff Dean jdean@ieee.org
|
|