LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-18-2006, 04:04 PM   #1
metallica1973
Senior Member
 
Registered: Feb 2003
Location: Washington D.C
Posts: 2,190

Rep: Reputation: 60
DMZ and Playstation2


I have a playstation2 and I have an extra NIC that I want to use to create a DMZ for my playstation.Can somebody give me an example of a sample iptables rule set and can I allow all the UDP and TCP ports open or better said should I allow all the ports wide open and how big of a security theat is it?
 
Old 09-18-2006, 04:28 PM   #2
Brian1
LQ Guru
 
Registered: Jan 2003
Location: Seymour, Indiana
Distribution: Distribution: RHEL 5 with Pieces of this and that. Kernel 2.6.23.1, KDE 3.5.8 and KDE 4.0 beta, Plu
Posts: 5,700

Rep: Reputation: 65
I would go here and check out the scripts for mulit-homed firewalls.
http://www.linuxguruz.com/iptables/

Brian1
 
Old 09-18-2006, 04:50 PM   #3
metallica1973
Senior Member
 
Registered: Feb 2003
Location: Washington D.C
Posts: 2,190

Original Poster
Rep: Reputation: 60
These are the rules that I have added to my firewall. I remarked out the access to LAN area of the DMZ rule set. I did not see a purpose for that rule(my lan does not need access to my PS2 or the DMZ). I connected my laptop and configured it with the 192.168.5.10 to simulate the PS2 and I can ping a domain by name successfully, the ip address of the domain successfully but when I try and access the internet it just hangs. I am wondering if traffic is not being allowed back into my network!

PS2_IFACE=eth1
PS2_IP=192.168.5.1/28
PS2=192.168.5.10

PHP Code:
$IPTABLES -A INPUT -p ALL -i $PS2_IFACE -d $PS2_IP -j ACCEPT
$IPTABLES 
-t nat -A PREROUTING -p TCP -i $EXT_IFACE -d $PS2_IP --dport 1:65353 \
-
j DNAT --to-destination $PS2
$IPTABLES 
-A FORWARD -i $PS2_IFACE -o $EXT_IFACE -j ACCEPT
$IPTABLES 
-A FORWARD -i $EXT_IFACE -o $PS2_IFACE -m state \
--
state ESTABLISHED,RELATED -j ACCEPT
#$IPTABLES -A FORWARD -i $LAN_IFACE -o $DMZ_IFACE -j ACCEPT
#$IPTABLES -A FORWARD -i $DMZ_IFACE -o $LAN_IFACE -j ACCEPT
$IPTABLES -A FORWARD -p TCP -i $EXT_IFACE -o $PS2_IFACE -d $PS2 \
--
dport 1:65353 -j allowed
$IPTABLES 
-A FORWARD -p UDP -i $EXT_IFACE -o $PS2_IFACE -d $PS2 \
--
dport 1:65353 -j allowed 

Last edited by metallica1973; 09-19-2006 at 11:37 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to nat playstation2 packets ( iptables ) nanoprobe Linux - Networking 1 01-23-2005 12:40 PM
Playstation2 owners Fear58 General 6 06-13-2004 12:37 AM
PlayStation2 OS Westdog976 Linux - Software 2 06-12-2003 03:38 PM
Linux up your Playstation2... fatgod Linux - General 3 05-24-2002 09:04 AM
Sony releases Linux for PlayStation2 Kzin Linux - General 1 02-03-2002 05:17 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:54 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration