On Fri, 2004-09-17 at 05:37, hamals@xxxxxxxxxxx wrote: > #!/bin/bash > > > iptables -F > > iptables -t nat -F > > iptables -t mangle -F > > # filter table everythingd is ACCEPT only to follow the > easyest way# > > iptables -P INPUT ACCEPT > iptables -P FORWARD ACCEPT > iptables -P OUTPUT ACCEPT > > ## make DMZ -> internet ## > > iptables -t nat -A POSTROUTING -s 192.168.2.1 -o eth1 -j > SNAT --to-source 82.190.228.52 > > > ## make internet -> DMZ ## > > iptables -t nat -A PREROUTING -i eth1 -d x.x.x.52 -j DNAT > --to-destination 192.168.2.1 sysctl -w net.ipv4.ip_forward=1 -j -- Jason Opperisano <opie@xxxxxxxxxxx>
