state RELATED,ESTABLISHED
Andrew Meredith
andrew@anvil.org
Thu, 19 Jul 2001 21:32:36 +0100
Pavlos Parissis wrote:
>
> May be i did n't post my questions right.
> I want to allow firewall and others behind the firewall to do ftp,www,pop,smtp and dns
> communication but i don't want anyone to
> connect the firewall and the others behind it.
> So, which is the best way to do that?
>
> Pavlos
I understand what you are trying to do and I have suggested how you
could do this.
Allow RELATED & ESTABLISHED back in, allow all traffic out via NAT and
if you don't want incoming connections for things like DNS or SMTP then
that is that.
Andrew Meredith
_______________________________________________________________
The Anvil Organisation Ltd.
Director
Tel: +44 (0) 1249 444240 | Email: andrew@anvil.org
Fax: +44 (0) 1249 460560 | Web: http://www.anvil.org/
Mob: +44 (0) 7802 389007 | SMS: andrew.meredith@sms.genie.co.uk
_______________________________________________________________
The box says Win95 or better .. Must run under Linux then!