Hello, I'm setting up a centos5 router for a friend. It will direct traffic to an internal webserver, already in place, as well as run squid proxy. It should do nat and have a firewall with iptables. I've set up routers before for this purpose but always of the bsd type and using their firewalls. I understand the concepts, nat, packet filtering, etc. but i'm not getting iptales at all. If anyone is an expert on this i'd appreciate hearing from you. I have what are probably basic questions, i've read the docs, but i am lost. Thanks. Dave.
You might try loading a copy of Webmim onto your linux box, there is a Firewall module that will make changing and setting up the routing very easy and quick to understand...
www.webmim.com
webmin-1.360-1.noarch.rpm
There is a simple RPM install that works with Centos...
john
Dave wrote:
Hello, I'm setting up a centos5 router for a friend. It will direct traffic to an internal webserver, already in place, as well as run squid proxy. It should do nat and have a firewall with iptables. I've set up routers before for this purpose but always of the bsd type and using their firewalls. I understand the concepts, nat, packet filtering, etc. but i'm not getting iptales at all. If anyone is an expert on this i'd appreciate hearing from you. I have what are probably basic questions, i've read the docs, but i am lost. Thanks. Dave.
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On Tue August 28 2007 12:27, Dave wrote:
Hello, I'm setting up a centos5 router for a friend. It will direct traffic to an internal webserver, already in place, as well as run squid proxy. It should do nat and have a firewall with iptables. I've set up routers before for this purpose but always of the bsd type and using their firewalls. I understand the concepts, nat, packet filtering, etc. but i'm not getting iptales at all. If anyone is an expert on this i'd appreciate hearing from you. I have what are probably basic questions, i've read the docs, but i am lost.
What does this network look like? How many NIC's in the router machine?
I'm running a router/firewall here at home with 3 networks connected and I find the way I do things a lot better then any software setup out there.
IPTABLES is simple. It works in a top to bottom flow. First rule it matches is executed.
On Tuesday, August 28, 2007 12:27 PM -0400 Dave dmehler26@woh.rr.com wrote:
I've set up routers before for this purpose but always of the bsd type and using their firewalls. I understand the concepts, nat, packet filtering, etc. but i'm not getting iptales at all. If anyone is an expert on this i'd appreciate hearing from you. I have what are probably basic questions, i've read the docs, but i am lost.
Wikipedia has a decent introduction:
http://en.wikipedia.org/wiki/Iptables
There's a list of links to diagrams at the end to help in understanding the packet flow.
Let us know what doesn't make sense there, so the article can be adjusted.
-
Dave -
John Plemons -
Kenneth Porter -
Robert Spangler