[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Sheflug] RTSP / Real Media Clients / Firewalls/ Proxies
> -----Original Message-----
> From: Barrie Bremner [mailto:baz-sheflug [at] barriebremner.com]
> Assuming that the firewall is masquarading, inbound traffic is coming
> in on eth1 and the client is behind the firewall:
>
> iptables -A INPUT -i eth1 -m state --state NEW,INVALID -j DROP
> iptables -A FORWARD -i eth1 -m state --state
> RELATED,ESTABLISHED -j ACCEPT
That would masquerade all traffic though,
So for example when a Student installs there own smtp server they can spam
the whole world through our connection
.. I'd like something more refined.
___________________________________________________________________
Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html
GNU the choice of a complete generation.