Blue|Fusion
Rated XXX
|
 Posted: Sun, 13 May 2007 21:09:18 Post Subject: Custom Home Router - iptables Help |
 |
|
Over the past few months I have been vastly improving my tiny home network in an effort to learn a little more about more advanced networks. Just recently I replaced my Linksys Router with a spare PC running Linux with dual NICs and iptables.
Right now, it's doing it's job fine with NAT. I am new to manually setting iptables rules, but am trying to learn it in the process. I want to make the system drop or reject (whatever's best suited for the situation) all incoming traffic that shouldn't be coming in. Since there's desktops surfing the web, using IM, and mail, obviously the related traffic would need to get back to the FORWARD chain. I'm not certain, but would assume that's related to checking the packet's state? In essence, I want this PC to firewall all outside traffic to INPUT and FORWARD chains except for that traffic that really should be there.
Here's the relative info:
LAN: eth0: 10.1.1.1
WAN: eth1: 64.233.255.0
Network: 10.1.1.0/24
I have most of the rules set from this HOWTO: http://www.gentoo.org/doc/en/home-router-howto.xml
I also have TCP port 80 forwarded to 10.1.1.20 for web. One thing about this, though is outsiders can view it, but when I attempt to go to the site hosted on the server with the WAN IP, I get connection refused. Any idea about that one?
Any help very appreciated! I really want to learn this iptables stuff already! I've been putting this off for years  .
_________________
5 home-built PCs, ASUS A6Jc Laptop, and a PowerEdge 2650 - all running Gentoo. Now if only I can get a car and plane to run it. Take a look at my Gallery! |
|
