How to configure system-config-securitylevel-tui to permit only the internal LAN to access my ADSL router?
Vinicius
cviniciusm at terra.com.br
Thu Nov 18 02:01:47 UTC 2004
Em Qui, 2004-11-18 às 02:35 +0100, Alexander Dalloz escreveu:
> Am Do, den 18.11.2004 schrieb Vinicius um 1:31:
>
> > how to configure system-config-securitylevel-tui to permit only the
> > internal LAN to access my ADSL router and to block the others, please?
> >
> > TIA, Vinicius.
>
> You can't by using this tool.
>
> I guess the ADSL router is your Fedora machine (else the question would
> not make much sense in it's form) and you have 2 network cards and thus
> 2 ethernet devices in the Fedora based router. You will have to have
> some clue about the iptables syntax to make the necessary changes to the
> existing /etc/sysconfig/iptables set of rules. As the FORWARD chain uses
> the same rules as the INPUT chain it would break the forwarding of the
> router if you limit the traffic by adding "-s $INTERNAL_NET" to the
> ACCEPT rule lines. Running a router you should get in touch with
> iptables itself (www.netfilter.org). Though there are tools like
> firestarter which are mightier than the system-config tool and for those
> which prefer click&run over hand editing a plain text file.
>
> Alexander
>
In the scenario below, does an ADSL modem (router) in generally defaults
to deny access to the ports 21, 23 and 80, please?
TIA, Vinicius.
------------
| |
| Internet |
| |
------------
|
--------------
| Public IP |
-- --- --
| |
| M. ADSL |
| |
-- --- --
| Private IP |
--------------
|
------------
| |
| Private |
| Network |
| |
------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Esta ? uma parte de mensagem assinada digitalmente
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20041118/f6047a7f/attachment-0001.sig>
More information about the fedora-list
mailing list