Re: How to selectivey route messages?

Michael Heiming wrote:
> In comp.os.linux.misc Jean-David Beyer <jdbeyer@xxxxxxxxxxx>:
>
>> Michael Heiming wrote:
>>
>>> In comp.os.linux.misc Jean-David Beyer <jdbeyer@xxxxxxxxxxx>:
>>>
>>> [ Using Broadband (DSL/etc) + Dial up with static IP ]
>>>
>>>
>>>
>>>> The problem will be with sendmail. While I could send messages out
>>>> through Verizon, I could not accept messages in, since they would
>>>> go to port 25.
>>>
>>>
>>> Hi Jean-David!
>>>
>>> Probably a good idea.
>>>
>>> Sounds like "Linux Advanced Routing & Traffic Control". ;-)
>>>
>>> Try this one:
>>>
>>> http://munky.maluco.com.br/lar_with_smtp.html
>>>
>>
>> This link was interesting. It did make me download all 151 pages of
>> "Linux Advanced Routing & Traffic Control HOWTO", but his two pages are
>> a bit confusing, mainly in the syntax. Every line of his examples is
>> prefixed by a pound sign (#), so if a shell is supposed to do it, it
>> won't.
>
>
> If you take a closer look, "#" is usually the standard root prompt, the
> are two of them for each comment. But one, the prompt with a command.

Thanks. I would _never_ have thought of that. So that example is mostly a
shell script to execute at boot time (but not the one that goes:

# echo 100 link2 >> /etc/iproute2/rt_tables

/etc/iproute2/rt_tables on my machine right now (I have done nothing overtly
to these files) has, as I showed below, all comments (if that is the syntax
of that file). I wonder who reads the files in /etc/iproute2 and when.
>
> [..]
>
>
>> [/etc/iproute2]$ cat rt_tables # # reserved values # #255 local #254
>> main #253 default #0 unspec
>
>
>> # # local # #1 inr.ruhep
>
>
>> I do not understand where his files are supposed to go. They seem to
>> talk to both iptables and to the ip program.
>
>
> The example is only adding *once* "100 link2" to /etc/iproute2/rt_tables.
>
>
> Anything else could be run from rc.local if your internet links are up
> then already, your firewall script would be another place to put it in.
> If you are using something custom for it.

I do not think so. My firewall script is in my home directory hierarchy
somewhere (writable only by root). I execute that whenever I change it, but
not otherwise. Afterwards, I do a
/etc/rc.d/init.d/iptables save
and this saves the firewall (with counters) into
/etc/sysconfig/iptables
On boot,
/etc/rc.d/init.d/iptables start
reloaads the firewall from
/etc/sysconfig/iptables

I guess I would just put something into /etc/rc.d/init.d to do the rest of
the stuff.
>
> Let us know how it works?
>
OK. But after the first of the year. I want to see how FiOS works for a
(Windows only, AOL customer) friend of mine first. Presumably she will get
her service starting tomorrow. She will lose AOL (all to the good, IMAO) and
have to be a real Internet user. I hope it will not be too hard on her.

I also want to plow through the ip program document and the "Linux Advanced
Routing & Traffic Control HOWTO" document because I will really want to know
what I am doing, since if I screw up, I will not be able to Internet all
that well for help. Well, I could switch back and forth to the Windows
machine, but I would not enjoy that: plugging wires and rebooting.

--
.~. Jean-David Beyer Registered Linux User 85642.
/V\ PGP-Key: 9A2FC99A Registered Machine 241939.
/( )\ Shrewsbury, New Jersey http://counter.li.org
^^-^^ 21:40:00 up 11 days, 8:10, 4 users, load average: 4.25, 4.26, 4.25
.

Relevant Pages

  • Re: iptable NAT help
    ... > my firewall script i set my NAT policies to DROP ie ... > when i set my default policies to DROP ..the internal computers dont ... > internet on internal network? ...
    (comp.security.firewalls)
  • Re: allowing only packets from a certain ip address
    ... I am trying to stop that particular IP from internet ... I think my iptable is working correctly as other rules in my firewall script ... > if you were aware of existence of iptables, ipchains, etc. ...
    (comp.os.linux.security)
  • firewall using iptables DHCP IP may change?
    ... I am trying to set up a firewall using iptables. ... My internet connection is via adsl, ... dynamic (DHCP). ... rerun the firewall script accordingly? ...
    (comp.os.linux.networking)
  • Re: Firewall-script
    ... > the internet (with Debian GNU/Linux). ... You probably don't need a firewall script on that machine. ... A foreign body and a foreign mind, ...
    (comp.security.firewalls)