[NTLUG:Discuss] Where's the best place to find answers about Linux?

MadHat madhat at unspecific.com
Wed Sep 26 15:52:17 CDT 2001 

At 10:33 AM 9/26/2001 -0500, you wrote:
>And, is there a way to descriminate specific machines using their MAC
>address?

You can use DHCP to assign specific IPs according to MAC, and not allow new 
IPs to ones you don't have the MAC for... then you can use the specific IPs 
for the firewall.  This allows you to make changes to the network settings 
of all the machines at once, since they are being pushed out form the DHCP 
server.

>Bob
>
>----- Original Message -----
>From: "George Lass" <George.Lass at osc.com>
>To: <discuss at ntlug.org>
>Sent: Tuesday, September 25, 2001 5:38 PM
>Subject: Re: [NTLUG:Discuss] Where's the best place to find answers about
>Linux?
>
>
> > Here is how I route incoming VNC requests thru my firewall:
> >
> > # VNC: Route incoming eth0 at port 5900, to 192.168.1.4:5900
> > iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 5900 -j DNAT --to
> > 192.168.1.4:5900
> >
> > NOTE: I am routing ALL requests incoming from eth0 to my firewall'ed
> > IP 192.168.1.4  I'm sure that iptables will allow you to specify an
> > input IP address rather than just the interface itself.
> >
> > George
> >
> > Bob Byron wrote:
> > >
> > > I have a few specific questions on Linux and I am wondering where
> > > would be the best place to ask them.  Does anyone have some "best"
> > > sites and newsgroups that like to use for Linux?
> > >
> > > My questions are:
> > >
> > > 1) What is the best way to track byte usage of an IP address when
> > > using Linux as a NAT firewall?
> > > I want to be able to track everyone behind the firewall.
> > >
> > > 2) Even though I am using NAT on the firewall, there are occasions
> > > when I want to direct all traffic destined for a specific address to a
> > > specific machine behind the firewall.  I am using iptables (kernal
> > > 2.4).  In other words, I have a machine sitting on my desk.  Even
> > > though this machine has a private non routable (192.168.*.*) IP
> > > address, I want users outside to see this machine.  I have a bank of
> > > 10 IP addresses, of which the firewall is taking up only one.  I want
> > > the firewall to route any traffic destined for the second of the 10 IP
> > > addresses to the machine on my desk.  Any ideas?  Where's the best
> > > place to ask?
> > >
> > > Thank You,
> > > Bob Byron
> > >
> > _______________________________________________
> > http://www.ntlug.org/mailman/listinfo/discuss
>
>_______________________________________________
>http://www.ntlug.org/mailman/listinfo/discuss

--
MadHat at unspecific.com

More information about the Discuss mailing list