Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
eth0 = 192.168.99.100/24 ,GW=192.168.99.1
eth1 = 192.168.100.200 /24 , GW=??
windows ip = 192.168.100.201 /24, GW=??
Hi,
I recently trying to use iptables in my RHEL 5.1 as firewall for packet filtering and traffic routing.My RHEL5.1 is embeded with 2 nic cards.eth0 is connecting to our public network , eth1 is connecting to my private network.Within my private network I have setup a windows share folder.The reason I want to use RHEL5.1 as a firewall is I understand the iptables give lots of control of traffic flow. Here are the intention what I want to do:
1. Only allow certain MAC address from public network to access my private network share.
example : I have create a windows share folder name "winshare", when certain user want to access the share folder from public, only certain MAC address which is match in iptables are allow to connect to my windows share.
Is this possible done in iptables ? I have do many reseach but still not very understand the nature of the iptables.I study lots of DNAT,PREROUTING however I don't know how to start it.I hope the expert can provide me step by step guide to allow me to learn the lesson.Any comment is appreciated.
1. cant do that - since you will probably have 1 MAC address connected to your public interface which is your ISP routers MAC. the solution is probably using IP/subnet rule to allow access via the firewall.
2. yes - you can DNAT your SMB server (windows shares) or any DMZ servers - but still you have to access them by using ip address like \\a.b.c.d (i think this is not a good idea), or you can directly using VPN.
Hi,
thanks for the respose.my public is basically another LAN network from different subnet.would it possible to do that ? how ? a step by step guide is much appreciated.thank you.
and so on with rest of the SMB ports : tcp/udp 135,137,138,139.
and dont forget to configure your samba server to allow connection from the internet (that is not a good idea btw).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.