Hi All, I would like to know if the following is the correct way to setup my firewall rules to browse the net: iptables -A OUTPUT -p tcp -o ppp0 --dport 53 -j ACCEPT iptables -A OUTPUT -p udp -o ppp0 --dport 53 -j ACCEPT iptables -A OUTPUT -p tcp -o ppp0 --dport 80 -j ACCEPT iptables -A OUTPUT -p tcp -o ppp0 --dport 20 -j ACCEPT iptables -A OUTPUT -p tcp -o ppp0 --dport 21 -j ACCEPT iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE I am using this with squid and it is working. Is that a good way of doing things? I am nating the ports right? What i find is that when i browse ftp site they take ages to display the contents. Why is this happening and i did load ip_nat_ftp and iptables_nat. But when i setup a forward rule for ftp it will connect nice and quick. Thanks Regards _____________________________________________________________________ For super low premiums, click here http://www.dialdirect.co.za/quote
