iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
ok worked after one restart i dont know what was the problem but
worked, but still didnt drop the connection by this command. i can
stil ssh and even send receive email
iptables -t filter -P FORWARD DROP
as shared, so i can open all the ports
On Sun, 15 Apr 2012 19:05:24 +0500
Muhammad Yousuf Khan wrote:
> 4, on port 80 Squid will be acting as a proxy.
>
>
Yes, this is the meaning of 'transparent' in terms of a proxy. It means
that the web browsers don't have to be set to a specific port, when
users who know a bit more can use a di
Muhammad Yousuf Khan a écrit :
>
> did you mean this.
>
> 1, PAT all the traffice by iptables
Not PAT, NAT. And specifically source NAT (SNAT or MASQUERADE).
> 2. Block everything
> 3, accept only specific traffice
> 4, on port 80 Squid will be acting as a proxy.
Yes.
> if it is what you mea
On Sun, Apr 15, 2012 at 4:49 PM, Pascal Hambourg wrote:
> Muhammad Yousuf Khan a écrit :
>>
>> i know ICMP didnt have ports and it is a layer 4 proto.
>
> ICMP is tranported on top on IP which is a layer 3 (network) protocol,
> but that does not make it a layer 4 protocol. ICMP provides services
>
Muhammad Yousuf Khan a écrit :
>
> i know ICMP didnt have ports and it is a layer 4 proto.
ICMP is tranported on top on IP which is a layer 3 (network) protocol,
but that does not make it a layer 4 protocol. ICMP provides services
that are part of the IP protocol, so it is rather a layer 3 protoco
On Sat, Apr 14, 2012 at 3:40 PM, Pascal Hambourg wrote:
>
> Hello,
>
> > Muhammad Yousuf Khan wrote:
> >
> >> now the problem part is i want to ping outside host to verify the
> >> connectivity of internet for that all the time i have to open the SSH
> >> the console and ping. but what i want is,
On Sat, 14 Apr 2012 12:40:26 +0200
Pascal Hambourg wrote:
>
> Joe wrote :
> > only TCP and UDP have 'ports'
>
> No. ICMP does not have ports, but other protocols such as SCTP and
> DCCP have ports too.
>
>
Yes, I do realise there are others, but they are not among the
half-dozen or so which
Hello,
> Muhammad Yousuf Khan wrote:
>
>> now the problem part is i want to ping outside host to verify the
>> connectivity of internet for that all the time i have to open the SSH
>> the console and ping. but what i want is, i should also ping it from
>> host computers as well. however i don't
On Sat, 14 Apr 2012 13:04:08 +0500
Muhammad Yousuf Khan wrote:
> i have lately installed SQUID proxy and to avail all the facilities
> i am using it as Proxy mod not as Transparent mode neither i wanted
> to.
>
> now the problem part is i want to ping outside host to verify the
> connectivity o
i have lately installed SQUID proxy and to avail all the facilities i am
using it as Proxy mod not as Transparent mode neither i wanted to.
now the problem part is i want to ping outside host to verify the
connectivity of internet for that all the time i have to open the SSH the
console and ping.
10 matches
Mail list logo
