[Firehol-support] My first Firewall in FireHOL

Łukasz Ćwięk admin at cek.pl
Thu Dec 6 23:15:53 CET 2007


Hello.

First I want apologize for my English.

Today I wanted build little firewall for my home lan (nothing  
special). I used the tutorial and all things are great.
But I have problem which my virtual interface I couldn't set up dnat  
and snat for my computer. I try in many ways...

This is short form which works.
How to set up this two rules in FireHOL but this must work on eth0:1...
Please Help Me.

#iptables -t nat -A PREROUTING -d 83.18.***.*14 -j DNAT --to 192.168.0.2
#iptables -t nat -A POSTROUTING -s 192.168.0.2 -j SNAT --to-source  
83.18.***.*14

I have:
eth0 : ISP
eth1: lan
eth0:1: my second public IP 83.18.***.*14


"
redirect to 3128 inface eth1 src 192.168.0.0/24 proto tcp dport 80

interface eth1 lan
policy accept

interface eth0 internet
protection strong

server ssh accept
server icmp accept
server ident reject with tcp-reset
client all accept

router lan2internet inface eth1 outface eth0
masquerade src 192.168.0.0/24
server ident reject with tcp-reset

route all accept
"

Thans for help.
Lucas 




More information about the Firehol-support mailing list