[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ADSL Masuerading with 2.4.7-10 and ipchains Q
- To: Shachar Shemesh <linuxil(at-nospam)consumer.org.il>
- Subject: Re: ADSL Masuerading with 2.4.7-10 and ipchains Q
- From: Dani Arbel <darbel(at-nospam)techunix.technion.ac.il>
- Date: Mon, 29 Oct 2001 12:58:04 +0200 (IST)
- Cc: Stiven Andre <stiven_a(at-nospam)hotmail.com>, <linux-il(at-nospam)linux.org.il>
- Delivered-To: linux.org.il-linux-il@linux.org.il
- In-Reply-To: <3BDD29B9.8040704@consumer.org.il>
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
Shachar,
If you read the description of the exploits needed to actualy break into
the modem you will see that the firewall protects it (as we all block
telnet, right?).
Dani
On Mon, 29 Oct 2001, Shachar Shemesh wrote:
> You do know that people can break into some of the ADSL modems, don't you?
>
> I would highly recommend using a seperate NIC for the modem->linux
> connection, unless it's the only machine on your network.
>
> Shachar
>
> Stiven Andre wrote:
>
> > Hi List again.
> >
> > First it is my network:
> > / ADSL-modem
> > 192.168.1.1 (Linux box)--
> > \ Hub (192.168.1.x)
> >
> > I use the option with two NICs.
> > When I configure the IPtables using the sample script from the how-to
> > I can't get
> > anything up maybe I miss something but I don't know what.
> > When I ping from 192,168.1.x (any machines from network) to
> > 192.168.1.1 I have a reply. After that I ping from 192.168.1.x to
> > 213.119.131.19 (for example) it is IP
> > of ppp interface on linux box I get the reply. But when I try to ping
> > from
> > 192.168.1.x to 192.116.192.9 (internet-Zahav DNS) or any other outside
> > world I get no reply.
> >
> > I want to configure my network so the linux box will proovide masq and
> > ftp server.
> > I would be happy to use the iptables but ipchains has more modules and
> > it is
> > only that I can get to work curretly.
> >
> > I would very thank you if you will give me a small example of
> > rc.firewall with
> > minimal security and minimal set of rules so I can test that I have
> > loaded all
> > modules that are needed.
> >
> > rc.firewall script that I found has too much rules and for option with
> > one NIC
> > after changing IP adresses it still not work...
> >
> > Thanx X-Kent
> >
> > _________________________________________________________________
> > Get your FREE download of MSN Explorer at
> > http://explorer.msn.com/intl.asp
> >
> >
> > =================================================================
> > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > the word "unsubscribe" in the message body, e.g., run the command
> > echo unsubscribe | mail linux-il-request@linux.org.il
> >
> >
> >
>
>
>
>
> =================================================================
> To unsubscribe, send mail to linux-il-request@linux.org.il with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail linux-il-request@linux.org.il
>
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il