[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [TEKNIK] [OT] Router med mulighed for fle re separate netværk



Tja, en linux med 3 netkort.

EXTIF=eth0
INTAIF=eth1
INTBIF=eth2

echo "Blok trafik mellem lokale netvaerk"
iptables -A FORWARD -p all -s 192.168.0.0/24 -d 192.168.1.0/24 -j DROP
iptables -A FORWARD -p all -s 192.168.1.0/24 -d 192.168.0.0/24 -j DROP

Hvis man har mailserver på boxen, er det en god ide
at lukke for div. spy/trojan/mv. der forsøger at komme ud.

echo "bloker smtp fra interne net til internet"
iptables -A FORWARD -i $INTAIF -o $EXTIF -p tcp --dport smtp -j DROP
iptables -A FORWARD -i $INTBIF -o $EXTIF -p tcp --dport smtp -j DROP

-- 
Later

Mogens Melander
+45 40 85 71 38
+66 870 133 224


On Fri, April 13, 2007 16:00, Lars Ribe wrote:
> Hej sslug'ere
> Her kommer et noget off-topic spørgsmål, men jeg tænkte, at nogle af
> netværkshajerne kunne klare det:
> Jeg er ved at hjælpe en kammerat med at sætte et netværk op i en
> dele-lejlighed. De vil gerne dele en internetforbindelse, men derudover
> have
> privatlivets fred på hver deres del af netværket. Jeg tænkte derfor, at
> man
> kunne få en router, der ud over at route til den fælles
> internetforbindelse
> ikke tillod nogen kommunikation mellem de forskellige netværksstik på "den
> indvendige side" af routeren.
>
> Findes en sådan dims? Eller et det endda en standardopsætning på en
> standard-router?
>
> Mange hilsner
>
> Lars Ribe
>
>
>
>
> --
> This message has been scanned for viruses and
> dangerous content by OpenProtect(http://www.openprotect.com), and is
> believed to be clean.
>
>



-- 
This message has been scanned for viruses and
dangerous content by OpenProtect(http://www.openprotect.com), and is
believed to be clean.



 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2007-05-01, 02:01 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *