[rhn-users] Iptables - please verify
Geetha Thanu
geetha_thanu at yahoo.co.in
Tue Nov 22 10:09:38 UTC 2005
Hello Gurus,
I just want the iptables rules here to be verified as
i am new to the rules.
It is actually between 2 subnets only with in a LAN
As i said early
server subnet: 172.16.10.0 series
Pc subnet : 192.168.0.0 series
the linux system as a fire wall between these 2
subnets is
eth0 172.16.10.250
eth1 192.168.1.1
#! /bin/bash
# Load modules
/sbin/modprobe ip_tables
#Flush all old rules
iptables -F
iptables -X
iptables -Z
#Default Drop policy
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP
#ipforward
/bin/echo "1" > /proc/sys/net/ipv4/ip_forward
#allow traffic on the loopback
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT
#allow traffic from 192.16.0.0 subnet to proxy server
in 172.16.0.0 subnet
iptables -A FORWARD -s 192.16.0.0 -i eth1 -d
172.16.10.200 -o eth0 -p TCP --dport 9000 -j ACCEPT
waiting for your replies
Thanks
Geetha
__________________________________________________________
Enjoy this Diwali with Y! India Click here http://in.promos.yahoo.com/fabmall/index.html
More information about the rhn-users
mailing list