Configuration of the “/etc/rc.d/init.d/firewall” script file for the Gateway Server | All about OS

Configuration of the “/etc/rc.d/init.d/firewall” script file for the Gateway Server

Категория: Securing and Optimizing

echo -n “Starting Firewalling Services:”
# Some definitions for easy maintenance.
# EDIT THESE TO SUIT YOUR SYSTEM AND ISP.
EXTERNAL_INTERFACE=”ethO”
LOCALJNTERFACEJ =”eth1″
LOOPBACK_INTERFACE=”lo”
IPADDR=”my.ip.address”
LOCALNETJ =”192.168.1.0/24″
IPSECSG=”my.ipsecsg.address”
FREESWANVI=”ipsecO”
ANYWHERE=”any/0″
NAMESERVERJ =”my.name.server. 1
NAMESERVER_2=”my.name.server.2
MY_ISP=”my.isp.address.range/24″
# Internet connected interface
# Internal LAN interface
# Your local naming convention
# Your IP address
# Whatever private range you use
# Space separated list of remote VPN gateways
# Space separated list of virtual interfaces
# Match any IP address
# Everyone must have at least one
# Your secondary name server
# ISP & NOC address range
SMTP_SERVER=”my.smtp.server” POP_SERVER=”my.pop.server” NEWS_SERVER=”my.news.server” SYSLOG_SERVER=”syslog.internal.server”
LOOPBACK=”127.0.0.0/8″
CLASS_A=”10.0.0.0/8″
CLASS_B=”172.16.0.0/12″
CLASS_C=”192.168.0.0/16″
CLASS_D_MULTICAST=”224.0.0.0/4″
CLASS_E_RESERVED_NET=”240.0.0.0/5″
BROADCAST_SRC=”0.0.0.0″
BROADCAST_DEST=”255.255.255.255″
PRIVPORTS=”0:1023″
UNPRIVPORTS=”1024:65535″

Страниц: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15

« Build a kernel with Firewall Masquerading and Forwarding support
Deny access to some address »