Hi, I have designed a simple firewall ruleset. Can someone please check them? It is kept at http://payal.staticky.com/firewall-1.txt [Thanks Ralf, I will reply to your mail a bit later when someone cross-checks this too.] The objective is as follows, eth0=1.2.3.4 +----------+ +----------+ +--------------+ | INTERNET +------+ LINUX +--------+ WINDOWS | | | | FIREWALL | | CLIENTS | +----------+ +----------+ +--------------+ eth1=192.168.10.100 192.168.10.0/25 Linux box is connected to net thru a permanent ip (1.2.3.4) LAN users can go anywhere on net as well as Linux box. So can the Linux box. But from outside people can connect only to port 21, 22, 80 and can ping the Linux box (to check whether it is alive or not). Rest everything is blocked. Can someone please check my ruleset and tell me whether it will achieve my obective. I can test that box for very less time so have to do all the work from a different machine and then copy that file to that Linux box. Hence any help in finding problems will be appreciated. Thanks and bye. With warm regards, -Payal -- "Visit GNU/Linux Success Stories" http://payal.staticky.com Guest-Book Section Updated.
