rusty at linuxcare.com.au: Re: [plug] IP Chains
Matt Kemner
zombie at networx.net.au
Tue Jan 4 10:57:57 WST 2000
Forwarded on behalf of Rusty:
(His email to the list bounced to me because he's not subscribed at this
address)
For those who don't know, Rusty is the man that wrote the ipchains code,
and is currently replacing it with something even more bizarre and
inexplicable. :)
- Matt (owner-plug at linux.org.au)
---------------------------------------------------
From: Rusty Russell <rusty at linuxcare.com.au>
To: plug at linux.org.au
Cc: Michael.J.Hunt at usa.net
Subject: Re: [plug] IP Chains
In-reply-to: Your message of "Thu, 23 Dec 1999 08:13:31 +0800."
<NCBBIJMGHJHCPOHECIODKEEKCKAA.Michael.J.Hunt at usa.net>
Date: Mon, 03 Jan 2000 18:01:27 +1100
Sender: rusty at linuxcare.com.au
In message <NCBBIJMGHJHCPOHECIODKEEKCKAA.Michael.J.Hunt at usa.net> you write:
> ipchains -F
> ipchains -P forward DENY
> ipchains -A forward -j MASQ -s 192.168.1.0/24 -d 0.0.0.0/0
FYI: I prefer "ipchains -A forward -j MASQ -i ppp0", which is kind of
"say what you mean": masquerade everything going out ppp0.
Also, to the person who suggested against:
> modprobe ip_masq_ftp
> modprobe ip_masq_irc
> modprobe ip_masq_raudio
> modprobe ip_masq_quake
Note that these will *not* auto-load.
Hope that helps,
Rusty.
--
Hacking time.
More information about the plug
mailing list