[Firehol-support] My first Firewall in FireHOL
Łukasz Ćwięk
admin at cek.pl
Thu Dec 6 22:15:53 GMT 2007
Hello.
First I want apologize for my English.
Today I wanted build little firewall for my home lan (nothing
special). I used the tutorial and all things are great.
But I have problem which my virtual interface I couldn't set up dnat
and snat for my computer. I try in many ways...
This is short form which works.
How to set up this two rules in FireHOL but this must work on eth0:1...
Please Help Me.
#iptables -t nat -A PREROUTING -d 83.18.***.*14 -j DNAT --to 192.168.0.2
#iptables -t nat -A POSTROUTING -s 192.168.0.2 -j SNAT --to-source
83.18.***.*14
I have:
eth0 : ISP
eth1: lan
eth0:1: my second public IP 83.18.***.*14
"
redirect to 3128 inface eth1 src 192.168.0.0/24 proto tcp dport 80
interface eth1 lan
policy accept
interface eth0 internet
protection strong
server ssh accept
server icmp accept
server ident reject with tcp-reset
client all accept
router lan2internet inface eth1 outface eth0
masquerade src 192.168.0.0/24
server ident reject with tcp-reset
route all accept
"
Thans for help.
Lucas
More information about the Firehol-support
mailing list