|
This rule allow me to SSH
into the firewall. $EXTIF is the
external interfaces and ipaddress
is the IP address I wish to allow SSH access from. $IPTABLES -A INPUT -i $EXTIF -p tcp --dport 22 -s ipaddress -d $EXTIP -j
ACCEPT These two rules allow me to forward RDP traffic to a box on
the LAN. The ipaddress is the IP address of the box on the
LAN. The $EXTIF is the public
interface on the firewall. The $INTIF
is the private interface on the firewall. $IPTABLES -A FORWARD -i $EXTIF -o
$INTIF -p tcp --dport 3389
-m state --state NEW,ESTABLISHED,RELATED -j ACCEPT $IPTABLES -A PREROUTING -t nat -p tcp -d $EXTIP --dport 3389 -j
DNAT --to ipaddress:3389 Hope this helps. Mario |
