LinuxSA Mailing list archives

Index: [thread] [date] [subject] [author] [stats]

  From: Anthony Symons <ant@sa.pracom.com.au>
  To  : David Rowlands <davidr@empower.com.au>
  Date: Thu, 31 May 2001 13:32:54 +0930

Re: ip masquerading

You can specify ports when you specify protocol. EG something like:

ipchains -A forward -j ACCEPT -p tcp -d 192.168.10.1 http
ipcahins -A forward -j DROP -d 192.168.10.1

That should allow connects to port 80 and disallow others. http gets
looked up in /etc/services or else you can just use the port number
instead.

Ant

David Rowlands wrote:
> 
> It's not what you missed, its what I failed to mention. I use fwtk to
> forward ports from the internal exchange server to the outside world for web
> email. If I DENY the exchange server, the port forwarding with fwtk stops.
<snip> 

-- 
Systems Administrator       
Pracom Ltd.             
+61 8 82029074 -=- +61 402 100 671 
anthony.symons@sa.pracom.com.au

PRIVILEGED - PRIVATE AND CONFIDENTIAL
This electronic mail is solely for the use of the addressee and may
contain information which is confidential or privileged.
If you receive this electronic mail in error, please delete it from
your system immediately and notify the sender by electronic mail or
using any of the above contact details.

-- 
LinuxSA WWW: http://www.linuxsa.org.au/  IRC: #linuxsa on irc.linux.org.au
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject

Index: [thread] [date] [subject] [author] [stats]

Return to the LinuxSA Mailing List Information Page