Q. How do I setup masquerading for my Linux iptables firewall? What rules I need to apply or write?
A. Iptables is used to set up, maintain, and inspect the tables of IP packet filter rules in the Linux kernel. Several different tables may be defined. Each table contains a number of built-in chains and may also contain user-defined chains. However, to setup masquerading you need to use special target called MASQUERADE.
This target is only valid in the nat table, in the POSTROUTING chain. It should only be used with dynamically assigned IP (dialup) connections: if you have a static IP address, you should use the SNAT target.
You need to type following rule (or add to your script):
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
Also set net.ipv4.ip_forward to 1:
net.ipv4.ip_forward=1
See this previous article for more step by step instructions.
Featured Articles:
- 20 Linux System Monitoring Tools Every SysAdmin Should Know
- 20 Linux Server Hardening Security Tips
- My 10 UNIX Command Line Mistakes
- Linux: 20 Iptables Examples For New SysAdmins
- 25 PHP Security Best Practices For Sys Admins
- The Novice Guide To Buying A Linux Laptop
- 10 Greatest Open Source Software Of 2009
- Top 5 Email Client For Linux, Mac OS X, and Windows Users
- Top 20 OpenSSH Server Best Security Practices
- Top 10 Open Source Web-Based Project Management Software
- Top 5 Linux Video Editor Software
Facebook it - Tweet it - Print it -
{ 1 comment… read it below or add one }
Hi
i just want to know , how i configure firewall on RHEL 4 , can u give me step by step configuration .
Looking forward
Thanks & Regards
Dipendra