<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
<br>
In that case, I think you'll like shorewall. First of all, there are a
couple of stock configurations, and if one of them is a match, copy the
config files and you're done.<br>
<br>
Otherwise, webmin does a good job with the files, or for that matter,
even straight editing the config file is very straightforward. You
should be up in less than a couple of hours if your setup is different
than one of the stock setups. (I used shorewall at ITT and most people
were able to get a working configuration)<br>
Robert Wolfe wrote:
<blockquote cite="mid01fa01c727c7$be932d00$3bb98700$@net" type="cite">
<meta http-equiv="Content-Type" content="text/html; ">
<meta name="Generator" content="Microsoft Word 12 (filtered medium)">
<!--[if !mso]>
<style>
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style>
<![endif]-->
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
pre
{mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0in;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";
color:black;}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-priority:99;
mso-style-link:"HTML Preformatted";
font-family:Consolas;
color:black;}
span.EmailStyle19
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.Section1
{page:Section1;}
-->
</style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="Section1">
<p class="MsoNormal"><span
style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);">I
didn’t take this as being facetious. </span><span
style="font-size: 11pt; font-family: Wingdings; color: rgb(31, 73, 125);">J</span><span
style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);">
I
was actually looking for something a little bit easier than setting up
iptables
because of the fact that I _<i>don’t</i>_ have that much time on my
hands these
days. </span><span
style="font-size: 11pt; font-family: Wingdings; color: rgb(31, 73, 125);">J</span><span
style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);"><o:p></o:p></span></p>
<p class="MsoNormal"><span
style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);"><o:p> </o:p></span></p>
<p class="MsoNormal"><span
style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);">Robert
Wolfe [MCP/Linux+]<o:p></o:p></span></p>
<p class="MsoNormal"><span
style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);"><o:p> </o:p></span></p>
<div>
<div
style="border-style: solid none none; border-color: rgb(181, 196, 223) -moz-use-text-color -moz-use-text-color; border-width: 1pt medium medium; padding: 3pt 0in 0in;">
<p class="MsoNormal"><b><span
style="font-size: 10pt; font-family: "Tahoma","sans-serif"; color: windowtext;">From:</span></b><span
style="font-size: 10pt; font-family: "Tahoma","sans-serif"; color: windowtext;">
<a class="moz-txt-link-abbreviated" href="mailto:nflug-bounces@nflug.org">nflug-bounces@nflug.org</a>
[<a class="moz-txt-link-freetext" href="mailto:nflug-bounces@nflug.org">mailto:nflug-bounces@nflug.org</a>] <b>On Behalf Of </b>Richard Hubbard<br>
<b>Sent:</b> Saturday, December 23, 2006 8:30 PM<br>
<b>To:</b> <a class="moz-txt-link-abbreviated" href="mailto:nflug@nflug.org">nflug@nflug.org</a><br>
<b>Subject:</b> Re: [nflug] Port forwarding<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><a href="http://www.shorewall.net/">http://www.shorewall.net/</a><br>
Not being factitious, but unless you have oodles of time/experience,
straight
configuration of iptables is a beast. Better to use something like
shorewall. It doesn't replace iptables, but rather writes
configuration
scripts for iptables. Put this together with webmin(<a
href="http://www.webmin.com">http://www.webmin.com</a>) and you have a
powerful, relatively easy setup for all of your firewalling needs,
including
masquerading, port forwarding, etc...<br>
<br>
Mark T. Valites wrote: <o:p></o:p></p>
<p class="MsoNormal">On Sat, 23 Dec 2006, robert wrote: <br>
<br>
<br>
<o:p></o:p></p>
<p class="MsoNormal">I would like to set up port forwarding on my
network per the
instructions on the following page: <br>
<br>
<a
href="http://www.linux.com/howtos/IP-Masquerade-HOWTO/forwarders.shtml">http://www.linux.com/howtos/IP-Masquerade-HOWTO/forwarders.shtml</a>
<br>
<br>
However, I cannot seem to locate the file /etc/rc.d/rc.firewall-* as
indicated
in the instructions. I am running the latest Debian 'stable' and my
Debian box (a Sun U5) is set to the DMZ to take care of all incoming
traffic. I basically want to have it redirect traffic from certain
ports
(such as 24554, 23, etc) to my Windoze box while leaving the services
that the
Debian box available to the world. <o:p></o:p></p>
<p class="MsoNormal"><br>
/etc/rc.d doesn't exist in Debian. Look at the following two files: <br>
<br>
/etc/init.d/iptables <br>
/etc/default/iptables<br>
<br>
<o:p></o:p></p>
<pre><o:p> </o:p></pre>
<pre style="text-align: center;">
<hr align="center" size="4" width="90%">
</pre>
<pre><o:p> </o:p></pre>
<pre>_______________________________________________<o:p></o:p></pre>
<pre>nflug mailing list<o:p></o:p></pre>
<pre><a href="mailto:nflug@nflug.org">nflug@nflug.org</a><o:p></o:p></pre>
<pre><a href="http://www.nflug.org/mailman/listinfo/nflug">http://www.nflug.org/mailman/listinfo/nflug</a><o:p></o:p></pre>
<pre> <o:p></o:p></pre>
</div>
<pre wrap="">
<hr size="4" width="90%">
_______________________________________________
nflug mailing list
<a class="moz-txt-link-abbreviated" href="mailto:nflug@nflug.org">nflug@nflug.org</a>
<a class="moz-txt-link-freetext" href="http://www.nflug.org/mailman/listinfo/nflug">http://www.nflug.org/mailman/listinfo/nflug</a>
</pre>
</blockquote>
</body>
</html>