Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
My server is a Slackware 9.1 Linux and a client is Win XP.
i would like to use the Win XP messenger from the client.
The problem is, i can't connect using sound, video and i can't trasfer a file.
I tried it but still, I can’t make an audio/video connection
Here is my rc.firewall - maybe it has a clue in it:
#!/bin/sh
#Change the part after the = to the where you IPTABLES is on your system
IPTABLES=/usr/sbin/iptables
#flush existing rules
$IPTABLES -F INPUT
#Allow Ping echo
#I have commented this line, so ping from an outside machine will not work.
#Uncomment the next line to make ping from outside work.
#$IPTABLES -A INPUT -p icmp -j ACCEPT
#Allow incoming HTTP requests (to Web server)
#$IPTABLES -A INPUT -p tcp --dport 80 -j ACCEPT
#This allows all data that has been sent out for the computer running the firewall
# to come back
#(for all of ICMP/TCP/UDP).
#For example, if a ping request is made it will allow the reply back
$IPTABLES -A INPUT -j ACCEPT -m state --state ESTABLISHED -i eth0 -p icmp
$IPTABLES -A INPUT -j ACCEPT -m state --state ESTABLISHED -i eth0 -p tcp
$IPTABLES -A INPUT -j ACCEPT -m state --state ESTABLISHED -i eth0 -p udp
#Allow traffic from ethernet adapter eth1 to pass through if
#you have a network, or
#as using linux as a router for internet etc.
#Your first ethernet card is eth0 and the second would be eth1 etc.
$IPTABLES -A INPUT -i eth1 -j ACCEPT
#Drop and log all other data
#The logging is set so if more than 5 packets are dropped in
#three seconds they will be ignored. This helps to prevent a DOS attack
#Crashing the computer the firewall is running on
$IPTABLES -A INPUT -m limit --limit 3/second --limit-burst 5 -i ! lo -j LOG
$IPTABLES -A INPUT -i ! lo -j DROP
#The logs from the firewall are put into your system log file, which can be found at #/var/log/syslog
I am very new to Linux and it is very difficult to read (and understand) the manuals on the Internet. The firewall script I am using came from a book I read so it is far from being perfect.
I will do my best to try and describe my network:
1- Server
OS: Slackware 9.1
Eth0 - external interface (connected to the internet)
Eth1 - internal interface (connected to the client) - IP: 192.168.0.1
2- client (only one for now)
OS: windows XP (sp1)
One interface - connected to the server - IP: 192.168.0.2
Gateway: 192.168.0.1
From outside:
----------------
I want allow only SSH connection to the server.
And then, start/allow any other server I will need (VNC, Webmin, HTTP, etc…) for a limited period of time.
From inside
---------------
I want to be able to use the messenger, get/send mail, use the printer and brows the local network.
So far, only the messenger is not working. After I will resolve this problem I want to add another interface to the server and connect it to another client (Win XP).
Then I will set the mail and the print servers.
hmm..
i can advice u to visit www.iptables-script.dk u can create a firewall and NAT script for yourself. it is simple and secure enough. if u want to run some services on gateway box u can add the following line end of that script:
iptables -A INPUT -i lo -j ACCEPT
how eth0 goes to internet? via ADSL modem? if it doesnt reach internet directly (i mean if it doesnt have a public ip) there can be some troubles with port foward.
I finally got my messenger to work from behind the firewall.
The problem with the messenger is that it opens random ports on a client PC.
After a short research I came to a conclusion I need to install a gateway of some sort.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.