On Tue, 17 Jun 2003, Justin Zygmont wrote: > > #Setup our policies > > $IPTABLES -P INPUT DROP > > $IPTABLES -P OUTPUT ACCEPT > > $IPTABLES -P FORWARD DROP > > > > #Our actual rules > > > > $IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT > > $IPTABLES -A FORWARD -p all -m state --state NEW -s 192.168.0.0/24 -j ACCEPT > > should this be on the INPUT chain? Also, if you wanted to allow ppp0 to > masq through as well, do you know if you could just add this line to do > it? -t nat -A POSTROUTING -o ppp0 -j MASQUERADE Sorry...I forgot to add that line, as it came after a ton of commentary. Yes, that line should work, perfectly. -- Mike Burger http://www.bubbanfriends.org Visit the Dog Pound II BBS telnet://dogpound2.citadel.org or http://dogpound2.citadel.org:2000 To be notified of updates to the web site, send a message to: site-update-request@xxxxxxxxxxxxxxxxx with a message of: subscribe
