am slack 10.1 si habar nu am cum sa share-uiesc conexiunea de la internet catre un alt calculator..
am 2 placi de retea pe calcu cu linux, pe una e netul si pe cealalalta este legat un alt calc.. si vreau sa stiu cum pot sa intru pe net de pe celalalt
nu reusesc de nici o culoare sa dau share la net
care stie...
Don't judge me.
google up IP Masq HOWTO
poze
We have a very simple policy here: arguing with the mods is allowed, winning an argument against the mods will get you banned.
am gasit ceva mai usor, decat sa compilez kernelul..
instalez un programior de dhcp si sunt bastan
sper sa mearga.. daca nu imi bagsi stau pe win!
Don't judge me.
Nu te sfatuiesc sa renunti si rezultatul te va multumi pe masura.Mesaj iniţiat de alexander
am gasit ceva mai usor, decat sa compilez kernelul..
instalez un programior de dhcp si sunt bastan
sper sa mearga.. daca nu imi bag
La ceea ce zici tu, chiar daca iti va merge..., tot mai bine sa configurezi IP Tables.
Last edited by cris__68; 04-11-2005 at 19:12.
Foloseste Firewall Builder http://www.fwbuilder.org/ pentru a configura mai usor iptables ca sa faca NAT
Download fwbuilder:
http://prdownloads.sourceforge.net/f...1.tgz?download
http://prdownloads.sourceforge.net/f...1.tgz?download
Download documentatie si exemple
http://www.fwbuilder.org/UsersGuide.pdf
Succes
thx all.
am reusit de minune prin 3 comezi
/usr/sbin/iptables -t filter -F
/usr/sbin/iptables -t nat -F
/usr/sbin/iptables -A POSTROUTING -t nat -s 192.168.0.0/24 -j MASUERADE
merge de minune, a mai trebuit sa configurez putin firewall-ul ca nu poate folosi decat anumite ip-uri masquerade si merge parfum
oricum o sa incerc si varinata lui k33
multumesc inca odata pt ajutor
Don't judge me.
Cred ca cea mai buna si comoda varianta o gasesti aici. http://www.coyotelinux.com/downloads...hp?ChannelID=5 (Windows Disk Creation Wizard v2.24.0). Este un programel de Windows ce-ti configureaza o discheta boot-abila cu un router linux. Nu ai nevoie de harddisk.
Omul are un PC cu Slack care il foloseste workstation si sa isi faca share la conexiune cu un alt PC. Nu vad la ce iar folosi chestia ta. Poate doar daca vrea sa isi faca un Linux Box standalone prin care sa routeze conexiunea si asta poate sa o faca cu alte distro Firewall - Router si nu neaparat cu Coyote.
Last edited by cris__68; 07-11-2005 at 11:23.
pt. cei interesati de acest subiect le recomand sa citeasca textul de mai jos:Sper sa va placaThe first thing most people should do is set the default policy for each inbound chain
to DROP:
# iptables -P INPUT DROP
# iptables -P FORWARD DROP
When everything is denied, you can start allowing things. The first thing to allow is
any traffic for sessions which are already established:
# iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
So as not to break any applications that communicate using the loopback address, it
is usually wise to add a rule like this:
# iptables -A INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -i lo -j ACCEPT
This rules allows any traffic to and from 127.0.0.0/8 (127.0.0.0 - 127.255.255.255)
on the loopback (lo) interface. When creating rules, it is a good idea to be as specific
as possible, to make sure that your rules do not inadvertently allow anything evil.
That said, rules that allow too little mean more rules and more typing.
The next thing to do would be to allow access to specific services running on your
machine. If, for example, you wanted to run a web server on your machine, you
would use a rule similar to this:
# iptables -A INPUT -p tcp --dport 80 -i ppp0 -j ACCEPT
This will allow access from any machine to port 80 on your machine via the ppp0 interface.
You may want to restrict access to this service so that only certain machines
can access it. This rule allows access to your web service from 64.57.102.34:
# iptables -A INPUT -p tcp -s 64.57.102.34 --dport 80 -i ppp0 -j ACCEPT
Allowing ICMP traffic can be useful for diagnostic purposes. To do this, you would
use a rule like this:
# iptables -A INPUT -p icmp -j ACCEPT
Most people will also want to set up Network Address Translation (NAT) on their
gateway machine, so that other machines on their network can access the Internet
184
Chapter 14 Security
through it. You would use the following rule to do this:
# iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
You will also need to enable IP forwarding. You can do this temporarily, using the
following command:
# echo 1 > /proc/sys/net/ipv4/ip_forward
To enable IP forwarding on a more permanent basis (i.e. so that the change is kept
after a reboot), you will need to open the file /etc/rc.d/rc.inet2 in your favorite
editor and change the following line:
IPV4_FORWARD=0
...to this:
IPV4_FORWARD=1
Last edited by Vort3x; 07-12-2005 at 11:04. Motiv: Automerged Doublepost
Design realizat de Pixelmotion
S.C. Forumnet S.R.L. Operator de date cu caracter personal inregistrat la A.N.S.P.D.C.P sub Numarul de Notificare: 15215
Iata cateva variante:
Descarcati varianta potrivita:
Raspunde cu citat
