[SLE] routing server with SuSE machine (revised)

From: Prabu Subroto (prabusubroto_at_yahoo.com)
Date: 04/29/04

Next message: Dan Am: "Re: [SLE] Clustering my two linux servers."

Previous message: Nick LeRoy: "Re: [SLE] Bat files in Linux"
Next in thread: Jerome R. Westrick: "Re: [SLE] routing server with SuSE machine (revised)"
Reply: Jerome R. Westrick: "Re: [SLE] routing server with SuSE machine (revised)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Thu, 29 Apr 2004 07:12:23 -0700 (PDT)
To: suse-linux-e@suse.com

Dear my friends...

We have a new sales department at our office. The
internet access for this department should have some
restriction.
That's why I need to build a router for the LAN of
this new department.

Firstly, this router has 2 NIC (Ethernet). One is
connected to the hub of the new LAN (belong to the new
department, IP number 192.168.23.21/24) and another
NIC (IP Number 192.168.23.20/24) is connected to the
an internet dedicated router (IP Number
192.168.23.10/24). I also will put firewall
(shorewall) on this router after this routing server
works properly.

Secondly, I want to make this policy as the beginning
as follows:
The computers whose IP number
192.168.23.240-192.168.23.254/255.255.255.0 may only
visit "bloomberg.com" (204.179.240.9). So the other
destination from 192.168.23.240-192.168.23.254 will be
dropped (rejected).
But the rest (192.168.23.1-192.168.23.239/24) may
visit any internet domain (no restriction).

How can I implement this with iptables?

Please give me your advices...

Thank you very much in advance.

__________________________________
Do you Yahoo!?
Win a $20,000 Career Makeover at Yahoo! HotJobs
http://hotjobs.sweepstakes.yahoo.com/careermakeover

-- 
Check the headers for your unsubscription address
For additional commands send e-mail to suse-linux-e-help@suse.com
Also check the archives at http://lists.suse.com
Please read the FAQs: suse-linux-e-faq@suse.com

Next message: Dan Am: "Re: [SLE] Clustering my two linux servers."

Previous message: Nick LeRoy: "Re: [SLE] Bat files in Linux"
Next in thread: Jerome R. Westrick: "Re: [SLE] routing server with SuSE machine (revised)"
Reply: Jerome R. Westrick: "Re: [SLE] routing server with SuSE machine (revised)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

Re: Changing the Default Gateway
... I agree that I can't see how the WAN side of the router would have anything ... is saying that the folks changed the internal LAN IP of the router to .222. ... this new MPLS internet connetion and phase out the Frame router. ... All tests passed on this DNS server ...
(microsoft.public.windows.server.sbs)
RAS - Routingproblem? DNS? Wins?
... ging übers Kabelmodem ins Internet und die andere ins LAN. ... Adapter und über diesen nam der Router externe Anrufe unseres Aussenlagers ... anderen PCs ganz normal mit 1 Netzwerkkarte im LAN angehängt ist. ...
(microsoft.public.de.german.windowsxp.networking)
RAS - Routingproblem? DNS? Wins?
... ging übers Kabelmodem ins Internet und die andere ins LAN. ... Adapter und über diesen nam der Router externe Anrufe unseres Aussenlagers ... anderen PCs ganz normal mit 1 Netzwerkkarte im LAN angehängt ist. ...
(microsoft.public.de.german.windowsxp.networking)
Re: CEICW Network Error
... Normally with a router in the mix, the router gets the public IP ... address on its WAN side and its LAN side is given a private IP ... Please post results of an ipconfig /all for sbs server. ... Users brought in another tech and messed up internet ...
(microsoft.public.windows.server.sbs)
Re: Router install problem
... A router is an interface between two networks that otherwise couldn't ... that's the Internet (the Wide Area ... Network or WAN) and your local area network (LAN). ... and 5 buttons on the left (Wizard, Wireless, WAN, LAN, DHCP). ...
(microsoft.public.windowsxp.network_web)