IPChains... Have I figured it yet??

IPChains... Have I figured it yet??

Post by Gawain Lync » Thu, 01 Apr 1999 04:00:00



Hi,

I am still trapsing along with ipchins, trying to figure out what I am
doing..
Below is part of my script, basically I have a public internal network
that I want to be able to surf, ping etc from, to the Net.

The ipchains box is the gateway and I am NOT using MASQ.

Does this look right, I am getting icmp out and in from the internal
net, but not from the ipchains box itself... can anyone see where I
botched it??

Cheers,

Gawain

    ipchains -A input  -i EXTERNAL_INTERFACE -p icmp \
             -s 0.0.0.0/0 0 -d LOCALNET_1  -j ACCEPT
    ipchains -A input  -i EXTERNAL_INTERFACE -p icmp \
             -s 0.0.0.0/0 3 -d LOCALNET_1  -j ACCEPT
    ipchains -A input  -i EXTERNAL_INTERFACE -p icmp \
             -s 0.0.0.0/0 4 -d LOCALNET_1  -j ACCEPT
    ipchains -A input  -i EXTERNAL_INTERFACE -p icmp \
             -s 0.0.0.0/0 11 -d LOCALNET_1  -j ACCEPT
    ipchains -A input  -i EXTERNAL_INTERFACE -p icmp \
             -s 0.0.0.0/0 12 -d LOCALNET_1  -j ACCEPT

    ipchains -A input -i EXTERNAL_INTERFACE -p icmp \
             -s 0.0.0.0/0 8 -d LOCALNET_1  -j ACCEPT

    ipchains -A output -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 0 -d 0.0.0.0/0  -j ACCEPT

    ipchains -A output -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 3 -d 0.0.0.0/0  -j ACCEPT
    ipchains -A output -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 4 -d 0.0.0.0/0  -j ACCEPT
    ipchains -A output -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 8 -d 0.0.0.0/0  -j ACCEPT
    ipchains -A output -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 12 -d 0.0.0.0/0  -j ACCEPT

    ipchains -A output -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 11 -d 0.0.0.0/0  -j ACCEPT

    ipchains -A forward -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 0 -d 0.0.0.0/0  -j ACCEPT

    ipchains -A forward -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 3 -d 0.0.0.0/0  -j ACCEPT
    ipchains -A forward -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 4 -d 0.0.0.0/0  -j ACCEPT
    ipchains -A forward -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 8 -d 0.0.0.0/0  -j ACCEPT
    ipchains -A forward -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 12 -d 0.0.0.0/0  -j ACCEPT

    ipchains -A forward -i LOCAL_INTERFACE_1 -p icmp \
             -s LOCALNET_1 11 -d 0.0.0.0/0  -j ACCEPT

 
 
 

1. Has anyone figured this out yet?

I have been away from this newsgroup for a while. The last question I
asked was, "How to setup sendmail and domain name server to use domain
name as e-mail address for receiving mail?" I don't know if anyone has
fingured this out yet.

If so, please let me know. If you know who knows or where I can find
info like this ( I checked the FAQ but no luck,) please let me know.

Thanks a lot!

2. Translating Environment Variables btw. ksh, csh

3. Anyone figure out how to get a Trio3d working yet?

4. Routing Qusetion reframed

5. Am I having fun yet -- :(

6. Cirrus CL-PX2085

7. Please Help Me Figure Out How to Figure This Out

8. Windows - Linux Big File Transfer Using Diskettes

9. Am I having fun yet -- :(

10. Yet another poor guy having installation problems....:)

11. Am I having fun yet -- :(

12. yet another ipchains query

13. IPChains hole fixed yet?