LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices

Reply
 
Search this Thread
Old 09-09-2004, 04:24 PM   #1
tipaul
Member
 
Registered: Apr 2003
Location: Laval, Quebec, Canada
Distribution: Ubuntu
Posts: 121

Rep: Reputation: 15
Question simple firewall question


I'm missing only one point for IP filtering:

If i only put 127.0.0.1 in trusted host of my firewall (Firestarter), other stations in my small home network woul'd be able to connect to it (via samba, etc...).

If i add 192.168.1.0/24 in trusted host, now everything works for sharing, etc....

Now's the question: can people from the internet connect to my machine if I put this trusted network (192.168.1.0/24) in my firewall?

Can someone over the internet could actually get into a remote network under a local IP like 192.168.1.x ???

If anybody could answer or show me a link that describe this subject???


THANKS!
 
Old 09-09-2004, 04:33 PM   #2
subekk0
Member
 
Registered: Sep 2003
Location: Dallas, TX.
Distribution: Slacking since '94
Posts: 153

Rep: Reputation: 32
no. unless you have your public ip address forwarded to a machine on your trusted network. I use guarddog and it has the config section divided into an "internet" and "local" side. So that whatever you specify on the "internet" side people can see and likewise for the local side.

http://wwww.simonzone.com/software/guarddog/
 
Old 09-09-2004, 04:51 PM   #3
tipaul
Member
 
Registered: Apr 2003
Location: Laval, Quebec, Canada
Distribution: Ubuntu
Posts: 121

Original Poster
Rep: Reputation: 15
public ip address

The public IP address is the one I get for my ADSL modem, from my provider? (I suppose)

OKAY... So this kind of setup is safe:

ADSL modem -> router -> workstations (each one setup with a firewall which block everything except 192.168.1.0/24 and 127.0.0.1)

... i've check at grc.com for sheildsup... and I saw that my connexion is done via a 2xx.x.x.x address... So, no 192.x.x.x IPs seems to travel over the web...

That's good news...!
 
Old 09-09-2004, 05:04 PM   #4
Cedrik
Senior Member
 
Registered: Jul 2004
Distribution: Slackware
Posts: 2,140

Rep: Reputation: 242Reputation: 242Reputation: 242
From RFC 790, http://www.faqs.org/rfcs/rfc790.html, we can see that there is no chance to meet a 192.168.xxx.xxx adress in internet because it is a reserved ip range

Also try that to get your external ip

curl -s http://www.whatismyip.com | perl -ne 'print $1 if / (\d+\.\d+\.\d+\.\d+).*<\/T/'

Last edited by Cedrik; 09-09-2004 at 05:11 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Ubuntu Fluxbox simple question, simple answer? generallimptoes Linux - Software 3 09-26-2005 03:03 PM
Simple firewall and VPN question qennster Linux - Networking 4 05-09-2005 12:34 AM
simple firewall jeempc *BSD 16 10-10-2004 11:17 PM
Installing Programs - A simple question from my simple mind jmp875 Linux - Newbie 6 02-18-2004 10:03 PM
simple question seeking simple answer enzo250gto Linux - Newbie 1 10-27-2001 05:08 AM


All times are GMT -5. The time now is 05:36 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration