je_fro
Retired Dev
Joined: 14 Dec 2002
Posts: 236
Location: Republic of Texas
|
 Posted: Thu Jun 12, 2003 1:35 pm Post subject: gentoo-sources custom security level? |
 |
|
I'm trying to RTFM on this one, but there's a lot and I'm going to be late for P-Chem... 
I set up a firewall with the gentoo-sources kernel, compiled the default "custom security level" settings into the kernel, and followed some of the suggestions in "Securing Gentoo" docs for securing the box.
I have nat going, and I can surf from internal computers, but an internal apache box cna't be reached. There are a few lines that I'm not too sure about in my iptables script and I was hoping somebody here could shed some light...
echo "0" > /proc/sys/net/ipv4/conf/all/accept_source_route
echo "0" > /proc/sys/net/ipv4/conf/all/accept_redirects
<are the above lines messing up nat to my apache box?>
<I have this in below...>
iptables -A FORWARD -j ACCEPT -p tcp --dport 80
iptables -A PREROUTING -t nat -p tcp -i $WAN_NIC --dport 80 -j DNAT --to 192.168.xx.yy:80
Any help greatly appreciated...sheesh, I'm going to be late!
Thanks,
J
_________________
Really, I'm not out to destroy Microsoft. That will just be a completely unintentional side effect.
--Linus Torvalds
My site with some gentoo config files:
http://je-fro.net/page.html |
|
Networking & Security
