Hello,
I'm new to iptables
and i'll have to configure my DMZ like this:
______________________
| |
| INTERNET
|
|_____________________|
|
| STATIC IP (200.X.X.X - ETH0)
_________|______________
STATIC
IP
| FIREWALL
|
(192.168.0.1 -
ETH2)
| RED HAT
9 |
______________|
WEB SERVER (APACHE) |__________________________
|
| DNS SERVER (BIND)
|
|
|
| FTP
SERVER | STATIC
IP (10.0.0.1 - ETH1) |
|
|________________________|
|
|
| STATIC IP (10.0.0.2 - ETH0)
| ______________|_________
|
| DMZ (ONE MACHINE)
|
| STATIC
IP
(192.168.0.2)
| RED HAT
9 |
_____|_________________________
| WEB SERVER (APACHE) |
| INTERNAL
NETWORK |
| MAIL SERVER (QMAIL) |
| (ONE MACHINE - WINDOWS
XP) |
|________________________|
|______________________________|
I've designed this
topology, so if there is a mistake in it please corret me. The firewall machine
has 3 net cards.
The rules are as
follows:
Outside people can
access the WEB, DNS and FTP servers in the firewall.
Outside people can
access the WEB and MAIL server on the DMZ.
Internal network
people can access the WEB, DNS, FTP and MAIL in the DMZ and in the
INTERNET.
Can someone help me
configure IPTABLES to meet this requirement cause i am new to
iptables.
Thanks a lot in
advance,
Wagner.
