206 lines
3.6 KiB
HTML
206 lines
3.6 KiB
HTML
<HTML
|
|
><HEAD
|
|
><TITLE
|
|
>Networking Firewall -Masquerading and Forwarding</TITLE
|
|
><META
|
|
NAME="GENERATOR"
|
|
CONTENT="Modular DocBook HTML Stylesheet Version 1.60"><LINK
|
|
REL="HOME"
|
|
TITLE="Securing and Optimizing Linux"
|
|
HREF="index.html"><LINK
|
|
REL="UP"
|
|
TITLE="Networking -Management, Firewall, Masquerading and Forwarding"
|
|
HREF="net-manage.html"><LINK
|
|
REL="PREVIOUS"
|
|
TITLE="Config /etc/rc.d/init.d/firewall script file - Mail Server"
|
|
HREF="chap11sec103.html"><LINK
|
|
REL="NEXT"
|
|
TITLE="Build a kernel with Firewall Masquerading and Forwarding support"
|
|
HREF="chap12sec104.html"></HEAD
|
|
><BODY
|
|
CLASS="chapter"
|
|
BGCOLOR="#FFFFFF"
|
|
TEXT="#000000"
|
|
LINK="#0000FF"
|
|
VLINK="#840084"
|
|
ALINK="#0000FF"
|
|
><DIV
|
|
CLASS="NAVHEADER"
|
|
><TABLE
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TH
|
|
COLSPAN="3"
|
|
ALIGN="center"
|
|
>Securing and Optimizing Linux: RedHat Edition -A Hands on Guide</TH
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="left"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="chap11sec103.html"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="80%"
|
|
ALIGN="center"
|
|
VALIGN="bottom"
|
|
></TD
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="right"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="chap12sec104.html"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
></TABLE
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"></DIV
|
|
><DIV
|
|
CLASS="chapter"
|
|
><H1
|
|
><A
|
|
NAME="pr4ch12nfmf"
|
|
>Chapter 12. Networking Firewall -Masquerading and Forwarding</A
|
|
></H1
|
|
><DIV
|
|
CLASS="TOC"
|
|
><DL
|
|
><DT
|
|
><B
|
|
>Table of Contents</B
|
|
></DT
|
|
><DT
|
|
>12.1. <A
|
|
HREF="chap12sec104.html"
|
|
>Build a kernel with Firewall Masquerading and Forwarding support</A
|
|
></DT
|
|
><DT
|
|
>12.2. <A
|
|
HREF="chap12sec105.html"
|
|
>Config <TT
|
|
CLASS="filename"
|
|
>/etc/rc.d/init.d/firewall</TT
|
|
> script file -Gateway Server</A
|
|
></DT
|
|
><DT
|
|
>12.3. <A
|
|
HREF="chap12sec106.html"
|
|
>Configure script for Example Gateway Server</A
|
|
></DT
|
|
><DT
|
|
>12.4. <A
|
|
HREF="chap12sec107.html"
|
|
>Deny access to some address</A
|
|
></DT
|
|
><DT
|
|
>12.5. <A
|
|
HREF="chap12sec108.html"
|
|
><TT
|
|
CLASS="literal"
|
|
>IPCHAINS</TT
|
|
> Administrative Tools</A
|
|
></DT
|
|
></DL
|
|
></DIV
|
|
><DIV
|
|
CLASS="highlights"
|
|
><A
|
|
NAME="AEN6683"
|
|
></A
|
|
><P
|
|
> Unlike the example configurations in <A
|
|
HREF="fwall-scripts.html"
|
|
>The firewall scripts files</A
|
|
>, configuring a Linux Server to masquerade and forward traffic generally from the inside private network that has unregistered <SPAN
|
|
CLASS="acronym"
|
|
>IP</SPAN
|
|
> addresses
|
|
<SPAN
|
|
CLASS="abbrev"
|
|
>i.e.</SPAN
|
|
> <TT
|
|
CLASS="literal"
|
|
>192.168.1.0/24</TT
|
|
> to the outside network <SPAN
|
|
CLASS="abbrev"
|
|
>i.e.</SPAN
|
|
> the Internet require a special setup of your kernel and of your firewall configuration scripts file. This kind
|
|
of setting is also known as a Gateway Server, <EM
|
|
>a machine that serves as a gateway for internal traffic to external traffic</EM
|
|
>. This configuration must only be set if you have the intentions and the needs for this
|
|
kind of service and it's for this reason that the configuration of the script file for the Gateway Server is in its own chapter.
|
|
</P
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="NAVFOOTER"
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"><TABLE
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="chap11sec103.html"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="index.html"
|
|
>Home</A
|
|
></TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="chap12sec104.html"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
>Config <TT
|
|
CLASS="filename"
|
|
>/etc/rc.d/init.d/firewall</TT
|
|
> script file - Mail Server</TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="net-manage.html"
|
|
>Up</A
|
|
></TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
>Build a kernel with Firewall Masquerading and Forwarding support</TD
|
|
></TR
|
|
></TABLE
|
|
></DIV
|
|
></BODY
|
|
></HTML
|
|
> |