Re: Linux multihomed routing (2 ISP, 1 internal network) problem
- From: Clifford Kite <kite@xxxxxxxxxxxxxxxxx>
- Date: Fri, 27 Jul 2007 10:29:05 -0500
andy_occ@xxxxxxxxxxx wrote:
what is this unferttered inbound Internet traffic
you are referring to ?
My bad. I was thinking (or not...) that the rules
$IPTABLES -A FORWARD -d $INTNET -j ACCEPT
$IPTABLES -A FORWARD -s $INTNET -j ACCEPT
would allow virtually unrestricted access to $INTNET from the Internet,
which is not true with SNATed RFC 1918 networks. The only non-local
network access possible should be directly from an ISP to $INTNET or to
the DNATed server and server-ports from the Internet via the $SKYNETIP
address.
--
Clifford Kite
/* I hear and I forget. I see and I remember. I do and I understand.
--Confucius, 551-479 BC */
.
- References:
- Linux multihomed routing (2 ISP, 1 internal network) problem
- From: andy_occ
- Re: Linux multihomed routing (2 ISP, 1 internal network) problem
- From: andy_occ
- Linux multihomed routing (2 ISP, 1 internal network) problem
- Prev by Date: Re: Setting up of local resolver
- Next by Date: Simple Route Question
- Previous by thread: Re: Linux multihomed routing (2 ISP, 1 internal network) problem
- Next by thread: Wireless public key?
- Index(es):
