Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user-ru

From: Denis Gubanov <v12aml@×××××.com>
To: gentoo-user-ru@l.g.o
Subject: Re: [gentoo-user-ru] Настройка NAT
Date: Sat, 19 Nov 2005 11:07:08
Message-Id: 7987f3fa0511190306x5dd50845o@mail.gmail.com
In Reply to: [gentoo-user-ru] Настройка NAT by Maxim Ivanov
1 echo "1" > /proc/sys/net/ipv4/ip_forward ÄÅÌÁÌ?
2
3 19.11.05, Maxim Ivanov<redbaron@××××.ru> ÎÁÐÉÓÁÌ(Á):
4 >
5 > óÏÂÒÁÌ ÄÏÍÁ ×ÔÏÒÏÊ ËÏÍÐ É ×ÏÔ ÔÅÐÅÒØ ÂÁÌÕÀÓØ Ó ÎÁÓÔÒÏÊËÁÍÉ ÓÅÔÉ × Linux. ôÁË É
6 > ÎÅ ÓÍÏÇ ÎÁÓÔÒÏÉÔØ NAT. é ÔÁË ÞÔÏ ÍÙ ÉÍÅÅÍ:
7 >
8 > ëÏÍÐØÀÔÅÒ Ó Gentoo É ×ÙÈÏÄÏÍ × ÉÎÅÔ:
9 > eth0 = 192.168.0.2/24
10 > eth1 = adsl
11 > ppp0 = 10.1.12.5
12 >
13 > ÷ÔÏÒÏÊ ËÏÍÐ:
14 > IP = 192.168.0.1/24
15 > GATEWAY = 192.168.0.2
16 > DNS = IP ÁÄÒÅÓÁ DNS ÐÒÏ×ÁÊÄÅÒÁ
17 >
18 > ÓËÒÉÐÔ ÆÁÅÒ×ÏÌÁ:
19 > # Interface to Internet
20 > EXTIF=ppp+
21 >
22 > ANY=0.0.0.0/0
23 >
24 > iptables -P INPUT ACCEPT
25 > iptables -P OUTPUT ACCEPT
26 > iptables -P FORWARD DROP
27 >
28 > iptables -F FORWARD
29 > iptables -F INPUT
30 > iptables -F OUTPUT
31 > iptables -t nat -F POSTROUTING
32 >
33 > # Deny TCP and UDP packets to privileged ports
34 > iptables -A INPUT -i $EXTIF -d $ANY -p udp --dport 0:1023 -j LOG
35 > iptables -A INPUT -i $EXTIF -d $ANY -p udp --dport 0:1023 -j DROP
36 > iptables -A INPUT -i $EXTIF -d $ANY -p tcp --dport 0:1023 -j LOG
37 > iptables -A INPUT -i $EXTIF -d $ANY -p tcp --dport 0:1023 -j DROP
38 >
39 > # Deny TCP connection attempts
40 > iptables -A INPUT -i $EXTIF -p tcp --dccp-types SYNC -j LOG
41 > iptables -A INPUT -i $EXTIF -p tcp --dccp-types SYNC -j DROP
42 >
43 > # Deny ICMP echo-requests
44 >
45 > # Do masquerading
46 > iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o $EXTIF -j MASQUERADE
47 > echo 1 > /proc/sys/net/ipv4/ip_forward
48 >
49 > ÷ ÉÔÏÇÅ ÓÏ ×ÔÏÒÏÇÏ ËÏÍÐÁ ÐÉÎÇÕÅÔ ppp0, ÎÏ ×ÓÅ ÞÔÏ ÄÁÌØÛÅ (ÎÁÐÒÉÍÅÒ DNS
50 > ÐÒÏ×ÁÊÄÅÒÁ) - ÎÅÔ.
51 > --
52 > Maxim Ivanov <redbaron@××××.ru>
53 >
54 >
55 > --
56 > gentoo-user-ru@g.o mailing list
57 >
58 >
59
60
61 --
62 ó Õ×ÁÖÅÎÉÅÍ Ë ÷ÁÍ,
63 òÕËÏ×ÏÄÉÔÅÌØ ÏÔÄÅÌÁ ÉÎÆÏÒÍÁÃÉÏÎÎÙÈ ÔÅÈÎÏÌÏÇÉÊ ËÏÍÐÁÎÉÉ "å×ÒÏÐÁÒÔÎÅÒ",
64 çÕÂÁÎÏ× äÅÎÉÓ ÷ÌÁÄÉÍÉÒÏ×ÉÞ
65
66 +7 926 5739258 (ÍÏÂ.)
67 +7 095 2254145
68 +7 095 5053855
69 +7 095 5052755
70
71 --
72 gentoo-user-ru@g.o mailing list
Report Message
Find on MARC Find on Google Groups