set up my DMZ
Jason Opperisano
opie at 817west.com
Fri Sep 17 13:13:31 CEST 2004
On Fri, 2004-09-17 at 05:37, hamals at infinito.it wrote:
> #!/bin/bash
>
>
> iptables -F
>
> iptables -t nat -F
>
> iptables -t mangle -F
>
> # filter table everythingd is ACCEPT only to follow the
> easyest way#
>
> iptables -P INPUT ACCEPT
> iptables -P FORWARD ACCEPT
> iptables -P OUTPUT ACCEPT
>
> ## make DMZ -> internet ##
>
> iptables -t nat -A POSTROUTING -s 192.168.2.1 -o eth1 -j
> SNAT --to-source 82.190.228.52
>
>
> ## make internet -> DMZ ##
>
> iptables -t nat -A PREROUTING -i eth1 -d x.x.x.52 -j DNAT
> --to-destination 192.168.2.1
sysctl -w net.ipv4.ip_forward=1
-j
--
Jason Opperisano <opie at 817west.com>
More information about the netfilter
mailing list