Where is the correct place to control what traffic is masq'ed out? This is what I have, but I was told the Forward chain isn't the right place to do this? iptables -A POSTROUTING -t nat -o $WAN -j MASQUERADE iptables -A FORWARD -i $WAN -o $LAN -m state --state RELATED,ESTABLISHED -j ACCEPT iptables -A FORWARD -i $LAN -o $WAN -m state --state NEW,ESTABLISHED,RELATED -p tcp -m multiport --dports 80,443 -j ACCEPT So which table is the theoretically correct place to add all the ports/services I would want masq'ed out for internal clients? Thanks! jlc _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Iptables masq traffic limiting
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: "'CentOS mailing list'" <centos@xxxxxxxxxx>
- Subject: Iptables masq traffic limiting
- From: "Joseph L. Casale" <JCasale@xxxxxxxxxxxxxxxxx>
- Date: Fri, 29 Aug 2008 15:26:11 -0600
- Accept-language: en-US
- Acceptlanguage: en-US
- Delivered-to: centos@xxxxxxxxxx
- Thread-index: AckKHdvaFKjK/hoQRG6r7OkmGxspbw==
- Thread-topic: Iptables masq traffic limiting
- Follow-Ups:
- Re: Iptables masq traffic limiting
- From: Indunil Jayasooriya
- Re: Iptables masq traffic limiting
- From: Robert Spangler
- Re: Iptables masq traffic limiting
- Prev by Date: Re: syslog-ng
- Next by Date: Re: Iptables masq traffic limiting
- Previous by thread: relocation, migration
- Next by thread: Re: Iptables masq traffic limiting
- Index(es):
 |