[NBLUG/talk] Linux as router
Walter Hansen
gandalf at sonic.net
Mon Nov 1 12:07:23 PST 2004
I've had good luck using firestarter. You're up and running in about ten
minutes.
> Good morning,
>
>
>
> I have a Linux machine running with two NICs on it (+ the loopback
> interface), which I would like to use as a firewall for my home network.
>
>
>
> I would like to understand a bit more about iptables and wonder if any of
> you could help me.
>
>
>
> In IPTABLES, there are three main queues of packets, namely INPUT, FORWARD
> and OUTPUT.
>
>
>
> I believe:
>
> * INPUT and OUTPUT exist for both eth0 and eth1, but FORWARD is shared
> between the two.
> * When testing packets in the INPUT queue, only the input interface
> can be tested for, the output interface won't be set.
> * When testing packets in the OUTPUT queue, only the output interface
> can be tested for, the input interface won't be set.
> * Unless "echo 1 > /proc/sys/net/ipv4/ip_forward" is executed, packets
> will not be forwarded from one interface to the other.
>
>
>
> One more related question:
>
> * Does TCPDUMP show only arriving packets or does it also show packets
> being emitted from the interface being watched? Maybe I am using the wrong
> tool to watched the traffic go by.
>
>
>
> Thank you so much,
>
>
>
> Osiris Pedroso
>
> --
>
> Ph: (707) 658-3500
>
> AOL AIM: osirisPedroso
>
> http://www.SWoptimizer.com <http://www.swoptimizer.com/>
>
>
>
>
>
> _______________________________________________
> talk mailing list
> talk at nblug.org
> http://nblug.org/cgi-bin/mailman/listinfo/talk
>
More information about the talk
mailing list