Firewall se linux

[I.Ioannou]

On 22-Dec-99 Γιώργος Ευθήμερος wrote:
> H erwthsh mou loipon, pros opoion 3erei kati, einai h e3hs: Ti prepei na
> kanw gia na mporesw na "dw mesa" apo ton firewall pros tis duo kateu8unseis?
> Den ftanei mono to ip_forwarding na einai enabled? Xreiazomai bridging? Kati
> allo?

Les oti exeis default policies accept. Kanonika tha eprepe na eisai ok (alla
labe ypopsi oti ayto den einai firewall poia, aplos router einai).
Default getaway sto win exeis to eth1 toy linux ?
Ti netmask exeis sta subnet sou ? 
An ypothesoume oti to subnetworking sou einai swsto, bazeis kai to default
gateway sto win (tin dieythinsi tis eth1), bazeis default policy accept sta
input output, kai deny sto forward, kai dineis san kanona (sorry gia tin
antistoixeia se ipfwadm , den exw mathei akomi ta antistoixa se ipchains) :

ipfwadm -F -i a -S oti-thelw-na-fenetai-pantou/mask -D 0.0.0.0/0
ipfwadm -F -i m -S oti-den-thelw-na-fenetai/mask -D 0.0.0.0/0

prpei na eisai ok.
 
Alla se genikes grammes oi kanones prepei na rithmistoun basi toy ti theleis na
kaneis - isws tha eprepe na toys rithmiseis px na fainontai mono kapoies
portes/protokola tou win, kai oxi ola k.o.k. To Firewall-HOWTO to exeis
koitaksei ?

I.Ioannou <roryt at hol.gr>
--
====================================================================
Gia boithia (h na diagrafhte) e-mail sto majordomo at hellug.gr
Ta archives tis listas einai sto http://lists.hellug.gr/lgu.html
prin steilete kapoia erothsh psakte mipos exei hdh apanththei.
Gia opoiodipote problima stilte e-mail ston owner-linux-greek-users at hellug.gr
====================================================================