Board index Linux Networking

IP-Chains vs. IP-Masquerade

IP-Chains vs. IP-Masquerade

Post by sdrumm » Sat, 17 Mar 2001 10:35:03



I'm planning on setting up the Linux box to act as a gateway for a private

As I understand it from skimming the HOW-TOs, IP-Chains sets the firewall
rules and can also handle masquerading.
IP-Masquerade is for masquerading only.

If I install IP-Chains, is there any reason (read: functionality /
performance benefit) to install IP-Masquerade?

Thanks!

 
 
 
Top

IP-Chains vs. IP-Masquerade

Post by Manfred Bart » Sat, 17 Mar 2001 10:40:47



> I'm planning on setting up the Linux box to act as a gateway for a

> ISP.

> As I understand it from skimming the HOW-TOs, IP-Chains sets the
> firewall rules and can also handle masquerading.
> IP-Masquerade is for masquerading only.

And ipchains provides an interface to it.

Quote:> If I install IP-Chains, is there any reason (read: functionality /
> performance benefit) to install IP-Masquerade?

The purpose of IP-Masquerade is to share a single public IP address
among several hosts on your private network.  If you have enough
public addresses or if hosts on your LAN don't need to communicate
with the Internet then you don't need it.

When used correctly, IP-Masquerade can be a security feature because
there is no path to the masqueraded hosts from the Internet.

--
Manfred
---------------------------------------------------------------
ipchainsLogAnalyzer, NetCalc, whois at: <http://logi.cc/linux/>

 
 
 
Top

1. IP Masquerade , IP Chains

Hello everybody,

I'm new to computer networking , I want to setup an internal network
at home , the linux box will act as the gateway since I'll connect it
anytime throught PPP dialup connection , share the internet connection
for my Win95 machine . I found that there is no "ipfwadm" for me to
setup the packet forwarding policy so that I have downloaded a RPM
packet of "ipfwad" . After I have installed and want to run , I have
entered a command "ipfwadm \F \p deny" and it prompt me for an error
"Invalid argument" , but I can make sure that the command is right and
it was work on the same machine , but different version of Redhat .
The one I'm using with error is RH6.0 and it is working fine on RH6.1
on the same machine .

Since the pppd is always dead when I use RH6.1 so I was forced to use
back 6.0 . The ipfwadm is included in 6.1 , but why I can't find it in
6.0 ? And why it doesn't work ?

One more thing , I want to know , is IP Masquerade is the same kind of
thing that IP chains do ? If there is any different , please brieftly
tell me .

THANKS !

Best Regards,
Cody

2. date

3. proxy route gateway ip masquerading ip chains ?

4. Linux Graphing Software

5. IP masquerading vs. IP NetRouter

6. Managing Bandwith !

7. IP for masqueraded net other than masquerading host IP

8. Attention Linux Gurus: ppp

9. IP chain/Masquerading Help Sought

10. Adding a new client to IP Chains / masquerading ?

11. PPPOE, IP Chains & Masquerading

12. IP Chains, IP Masq, and Dial on Demand Problems

13. IP Chains by User, not IP Address,


All times are UTC
Board index