/[gentoo]/xml/htdocs/doc/en/home-router-howto.xml
Gentoo

Diff of /xml/htdocs/doc/en/home-router-howto.xml

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

Revision 1.20 Revision 1.21
1<?xml version='1.0' encoding='UTF-8'?> 1<?xml version='1.0' encoding='UTF-8'?>
2<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/en/home-router-howto.xml,v 1.20 2004/08/27 00:59:09 vapier Exp $ --> 2<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/en/home-router-howto.xml,v 1.21 2004/09/22 19:03:58 vapier Exp $ -->
3<!DOCTYPE guide SYSTEM "/dtd/guide.dtd"> 3<!DOCTYPE guide SYSTEM "/dtd/guide.dtd">
4 4
5<guide link="/doc/en/home-router-howto.xml"> 5<guide link="/doc/en/home-router-howto.xml">
6 6
7<title>Home Router Guide</title> 7<title>Home Router Guide</title>
13<abstract> 13<abstract>
14This document details how to turn an old Gentoo machine into a router 14This document details how to turn an old Gentoo machine into a router
15for connecting your home network to the internet. 15for connecting your home network to the internet.
16</abstract> 16</abstract>
17 17
18<version>1.1</version> 18<version>1.2</version>
19<date>July 21, 2004</date> 19<date>September 22, 2004</date>
20 20
21<chapter> 21<chapter>
22<title>Introduction</title> 22<title>Introduction</title>
23<section> 23<section>
24<body> 24<body>
413<comment>Then we lock our services so they only work from the LAN</comment> 413<comment>Then we lock our services so they only work from the LAN</comment>
414# <i>iptables -I INPUT 1 -i eth0 -j ACCEPT</i> 414# <i>iptables -I INPUT 1 -i eth0 -j ACCEPT</i>
415# <i>iptables -I INPUT 1 -i lo -j ACCEPT</i> 415# <i>iptables -I INPUT 1 -i lo -j ACCEPT</i>
416# <i>iptables -A INPUT -p UDP --dport bootps -i ! eth0 -j REJECT</i> 416# <i>iptables -A INPUT -p UDP --dport bootps -i ! eth0 -j REJECT</i>
417# <i>iptables -A INPUT -p UDP --dport domain -i ! eth0 -j REJECT</i> 417# <i>iptables -A INPUT -p UDP --dport domain -i ! eth0 -j REJECT</i>
418
419<comment>(Optional) Allow access to our ssh server from the WAN</comment>
420# <i>iptables -A INPUT -p TCP --dport ssh -i eth1 -j ACCEPT</i>
418 421
419<comment>Drop TCP / UDP packets to privileged ports</comment> 422<comment>Drop TCP / UDP packets to privileged ports</comment>
420# <i>iptables -A INPUT -p TCP -i ! eth0 -d 0/0 --dport 0:1023 -j DROP</i> 423# <i>iptables -A INPUT -p TCP -i ! eth0 -d 0/0 --dport 0:1023 -j DROP</i>
421# <i>iptables -A INPUT -p UDP -i ! eth0 -d 0/0 --dport 0:1023 -j DROP</i> 424# <i>iptables -A INPUT -p UDP -i ! eth0 -d 0/0 --dport 0:1023 -j DROP</i>
422 425

Legend:
Removed from v.1.20  
changed lines
  Added in v.1.21

  ViewVC Help
Powered by ViewVC 1.1.20