[TCLUG] Proper way to connect LANs

Wed Nov 14 09:46:41 CST 2001

On Tue, Nov 13, 2001 at 09:07:54PM -0600, David Blevins wrote:
> I spent all day reading about gateways, routing, etc. in order to setup
> Linux as my gateway.  I actually got it setup, but from what I understand
> the approach I tried is terribly insecure.
> 
> I did this and got it running:
> # echo 1 >/proc/sys/net/ipv4/ip_forward
> # ipchains -F
> # ipchains -P forward ACCEPT
> # ipchains -A forward -s 192.168.1.0/24 -d 0/0 -j MASQ
> 
> That works, but everything is reset when I restart my network.  And, as I
> read, this is apparently insecure.
> 
> What is the proper way to do this?
> 
> We'll use these numbers as an example of my net config:
> eth0 192.168.1.1   # The LAN obviously.
> eth1 24.32.5.105   # The DHCP assigned WAN IP
> 

If you're using Debian, get the ipmasq package.  Great stuff.

-- 
johntrammell at yahoo.com | 78BA 706C C5F9 9321 E7C4 933B D063 907B A88E 924B
Twin Cities Linux Users Group Mailing List (TCLUG)
Minneapolis/St. Paul, Minnesota  http://www.mn-linux.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 240 bytes
Desc: not available
Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20011114/18687db2/attachment.pgp