Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: tlug: ipfwadm
- To: "'tlug@example.com'" <tlug@example.com>
- Subject: RE: tlug: ipfwadm
- From: Scott Stone <sstone@example.com>
- Date: Thu, 19 Mar 1998 14:33:39 +0900 (JST)
- Content-Type: TEXT/PLAIN; charset=US-ASCII
- In-Reply-To: <c=US%a=_%p=DESHAW%l=MSTOKYO1-980319050608Z-1913@example.com>
- Reply-To: tlug@example.com
- Sender: owner-tlug@example.com
On Thu, 19 Mar 1998, Howard, Bruce wrote:
> so what did the final configuration look like?
like horse crap, once I figured out what I was doing :)
Turns out that applying deny rules to forwarding doesn't affect the
masqueraded machines at all (I learned this via tcpdump). You have to set
the default policy to deny and then only allow tcp 0:79, tcp 81:65535, and
all udp. That will make it apply masq rules to everything but tcp/80
(http) and people will have to use the proxy to get to the web.
>
> cheers,
> bruce
>
> >-----Original Message-----
> >From: Scott Stone [SMTP:sstone@example.com]
> >Sent: Thursday, March 19, 1998 1:45 PM
> >To: Tokyo Linux Users' Group
> >Subject: tlug: ipfwadm
> >
> >
> >never mind on the ipfwadm thing, I figured it out myself. Hee hee, now
> >everyone has to use the caching proxy except me, since my machine is
> >outside the masq firewall :) That's what they get for complaining that we
> >didn't have a caching proxy and making me install it! :)
> >
> ---------------------------------------------------------------
> Next TLUG Meeting: 11 April Sat, Tokyo Station Yaesu gate 12:30
> Featuring Tague Griffith of Netscape i18n talking on source code
> ---------------------------------------------------------------
> a word from the sponsor:
> TWICS - Japan's First Public-Access Internet System
> www.twics.com info@example.com Tel:03-3351-5977 Fax:03-3353-6096
>
--------------------------------------------------
Scott M. Stone <sstone@example.com, sstone@example.com>
<sstone@example.com>
Linux Developer/Systems Administrator for Pacific HiTech, Inc.
http://www.pht.com http://armadillo.pht.co.jp
http://www.pht.co.jp http://www.turbolinux.com
---------------------------------------------------------------
Next TLUG Meeting: 11 April Sat, Tokyo Station Yaesu gate 12:30
Featuring Tague Griffith of Netscape i18n talking on source code
---------------------------------------------------------------
a word from the sponsor:
TWICS - Japan's First Public-Access Internet System
www.twics.com info@example.com Tel:03-3351-5977 Fax:03-3353-6096
- References:
- RE: tlug: ipfwadm
- From: "Howard, Bruce" <Bruce-Howard@example.com>
- RE: tlug: ipfwadm
- Prev by Date: RE: tlug: X resolution / color depth
- Next by Date: RE: tlug: turbopnp
- Prev by thread: RE: tlug: ipfwadm
- Next by thread: tlug: IP forwarding
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |