iptables rules to connect through a linux firewall.
jludwig
wralphie at comcast.net
Thu Feb 2 01:12:55 UTC 2006
On Wednesday 25 January 2006 08:27, Dan Track wrote:
> Hi,
>
> I'm trying to connect a windows XP client to a remote pptp server. I'm
> using windows XP at home on my home network which connects to the internet
> via a fedora linux firewall using iptables with nat.
>
> What iptables rules do I need to insert to allow this to happen. I guess I
> just need to forward packets.
>
> Thanks in advance for your help.
>
> Dan
These are the forwarding rules I use (sans INPUT, OUTPUT, and MASQURADE
rules);
$IPT -A FORWARD -o $EXTIF -p tcp --dport 137 -j REJECT
$IPT -A FORWARD -o $EXTIF -p tcp --dport 138 -j REJECT
$IPT -A FORWARD -o $EXTIF -p tcp --dport 139 -j REJECT
$IPT -A FORWARD -o $EXTIF -p udp --dport 137 -j REJECT
$IPT -A FORWARD -o $EXTIF -p udp --dport 138 -j REJECT
$IPT -A FORWARD -o $EXTIF -p udp --dport 139 -j REJECT
$IPT -A INPUT -i $EXTIF -p udp --dport 137 -j REJECT
echo "Forwarding through machine"
$IPT -A FORWARD -i eth1
-j ACCEPT
$IPT -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED
-j ACCEPT
#$IPT -A FORWARD -i $EXTIF -m state --state ESTABLISHED,RELATED
-j ACCEPT
More information about the fedora-list
mailing list