[NTLUG:Discuss] OT:external ip addresses and ipcop

Terry Henderson trryhend at gmail.com
Tue Jun 6 22:10:01 CDT 2006


I assume you've set aliases for each of your mail servers
Network => Aliases
I assume you've done port forwarding for them
Firewall => Prot Forwarding
Next, go to ipcop's cli and edit the start section of the
rc.firewall.local script:
# vi /etc/rc.d/rc.firewall.local

#!/bin/sh
# Used for private firewall rules

# See how we were called.
case "$1" in
  start)
        ## add your 'start' rules here

/sbin/iptables -t nat -I CUSTOMPOSTROUTING -i "$RED_DEV" -s
<inside.server.ip.1> -j SNAT --to <out.side.ip.1>
/sbin/iptables -t nat -I CUSTOMPOSTROUTING -i "$RED_DEV" -s
<inside.server.ip.2> -j SNAT --to <out.side.ip.2>
        ;;
  stop)
        ## add your 'stop' rules here
        ;;
--------------------<snip>------------------------------------
:wq
# /etc/rc.d/rc.firewall.local start



More information about the Discuss mailing list