[linux-network] Iptables ve squid

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view

From: Veli ADIGÜZEL (veliadiguzel@hotpop.com)
Date: Mon 06 Jan 2003 - 11:04:35 EET

Next message: fr: "[linux-network] utilizasyon"
Previous message: Davut Topcan: "[linux-network] Re: IPABLES"

Merhabalar,

Asl=FDnda Pcnette bu ay bir arkada=FE=FDm=FDz bir yaz=FD yazm=FD=FE linux r=
uhunu
kaybediyor diye biraz kendisine hak vermeye ba=FElad=FDm listeye ne kadar
soru att=FDysam cevap verenler haric (bir veya iki ki=FEi) neden se
insanlar benim sordu=F0um konuyla ilgili ba=FEka cevaplar veriyorlar olumlu
yada olumsuz bir cevap alamad=FDm bu da beni =FCz=FCyor.
=20
Son bir kez =FEans=FDm=FD deneyeyim squid ve iptables kurdum ve kendimce
=E7al=FD=FEt=FDrd=FDm ama ba=F0lanan makinalar dns =E7=F6z=FCmlemesi yapm=
=FDyor (dns
numaras=FDn=FD girdim) outlook =E7al=FD=FEm=FDyor. =20

=DDnternet gayet g=FCzel =E7al=FD=FE=FDyor.

Yinede te=FEekk=FCrler.

iptables =E7=FDkt=FDs=FD: Bunlar=FD gerek Serdar K=F6yl=FC ,Erkan bey Gerek=
se
internetten buldu=F0um bilgilerle yapt=FDm=20

eth0 internet eth1 yerel a=F0

# Generated by iptables-save v1.2.5 on Mon Jan 6 10:53:01 2003
*nat
:PREROUTING ACCEPT [83:9121]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [4:254]
-A PREROUTING -s 192.168.16.0/255.255.255.128 -p tcp -m tcp --dport 80
-j DNAT --to-destination 127.0.0.1:3128=20
-A POSTROUTING -j MASQUERADE=20
COMMIT
# Completed on Mon Jan 6 10:53:01 2003
# Generated by iptables-save v1.2.5 on Mon Jan 6 10:53:01 2003
*filter
:INPUT ACCEPT [21:3104]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [22:3154]
:RH-Lokkit-0-50-INPUT - [0:0]
-A INPUT -j RH-Lokkit-0-50-INPUT=20
-A RH-Lokkit-0-50-INPUT -i eth0 -p udp -m udp --sport 67:68 --dport
67:68 -j ACCEPT=20
-A RH-Lokkit-0-50-INPUT -i eth1 -p udp -m udp --sport 67:68 --dport
67:68 -j ACCEPT=20
-A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT=20
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --tcp-flags
SYN,RST,ACK SYN -j REJECT --reject-with icmp-port-unreachable=20
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --tcp-flags
SYN,RST,ACK SYN -j REJECT --reject-with icmp-port-unreachable=20
-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT
--reject-with icmp-port-unreachable=20
-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT
--reject-with icmp-port-unreachable=20
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --tcp-flags
SYN,RST,ACK SYN -j REJECT --reject-with icmp-port-unreachable=20
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --tcp-flags
SYN,RST,ACK SYN -j REJECT --reject-with icmp-port-unreachable=20
COMMIT
# Completed on Mon Jan 6 10:53:01 2003

Next message: fr: "[linux-network] utilizasyon"
Previous message: Davut Topcan: "[linux-network] Re: IPABLES"

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view

Bu arsiv hypermail 2b29 tarafindan uretilmistir.