>I know that this doesn't really answer the question. But the best >strategy is to have a firewall all by itself. If you have an old 486 >around, you could try Coyote Linux <coyotelinux.com>. It boots and >runs off a floppy. That is actually tempting to do. I have other systems but it seems like a waste of resources. I want to make sure the latency is as low as possible. So, the firewall/Gateway seemed a good match. The WWW/FTP daemons truly do not do much. Maybe a coworker visits the web page once and a while. But, thats it. Now, if I run something like an email server or an Counter Strike server, I will have it on a differant computer. Heh. Thanks!! Joel >On 25 Nov 2002 at 18:43, Joel Linuxdude wrote: > > > I just had a small question (maybe dumb, I dont care). > > > > My firewall PC is also my DNS server (caching), gateway to > > the internet via cable modem, web server, ftp server and > > later my proxy server. > > > > Do I need to REDIRECT packets coming into eth0 (from the > > cable modem) to the firewall itself?? I know, the packets > > are suppose to go right to INPUT chain but people over > > the internet can no longer access my WWW, FTP or TELNET > > daemon. I fear A) The cable modem company are blocking > > the use of servers or B) I screwed up somewhere in my > > firewall script. > > > > HOW CAN I MAKE SURE ALL TCP/UDP PORT 20,21,22,23,80,443 > > GO FROM CABLE MODEM ON ETH0 TO MY FIREWALL AND NOT GET > > FORWARDED OVER ETH1 TO MY LAN? > > > > Thank you! > > > > _________________________________________________________________ Add > > photos to your messages with MSN 8. Get 2 months FREE*. > > http://join.msn.com/?page=features/featuredemail > > > > > > > >Chris Baker -- technical specialist >614-839-2447x108 >cbaker@bbbscolumbus.org >Big Brothers Big Sisters of Central Ohio >www.bbbscolumbus.org _________________________________________________________________ STOP MORE SPAM with the new MSN 8 and get 2 months FREE* http://join.msn.com/?page=features/junkmail
