* allow DCC through iptables nat box
@ 2005-08-29 16:21 Lars Nielsen
2005-08-29 16:41 ` Sp0oKeR
0 siblings, 1 reply; 3+ messages in thread
From: Lars Nielsen @ 2005-08-29 16:21 UTC (permalink / raw)
To: netfilter
Hey
I have the following setup:
LAN 192.168.1.0/24
Linux box with iptables
eth0 192.168.1.1
eth1 ext_ip
internet
I use the following to allow internal clients to access the internet.
iptables -t nat -A POSTROUTING -o eth1 -s 192.168.1.0/24 -d 0/0 -j
MASQUERADE
Which rules should i use to allow DCC to and from an internal Mirc
client on ip 192.168.1.2
I hope you can help me! ;o)
Best regards Lars Nielsen
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: allow DCC through iptables nat box
2005-08-29 16:21 allow DCC through iptables nat box Lars Nielsen
@ 2005-08-29 16:41 ` Sp0oKeR
2005-08-29 18:24 ` Sorin Panca
0 siblings, 1 reply; 3+ messages in thread
From: Sp0oKeR @ 2005-08-29 16:41 UTC (permalink / raw)
To: Lars Nielsen; +Cc: netfilter
You can use Patch O Matic module
5.4 irc-conntrack-nat patch
This patch by Harald Welte <laforge@gnumonks.org> allows DCC to work
though NAT and connection tracking. By default, this module will track
IRC connection on port 6667. But you can change this for another port
with the `ports=xx' argument.
http://www.netfilter.org/documentation/HOWTO//netfilter-extensions-HOWTO-5.html#ss5.4
Regards,
Sp0oKeR
On 8/29/05, Lars Nielsen <lars@mit-web.dk> wrote:
> Hey
>
> I have the following setup:
>
> LAN 192.168.1.0/24
> Linux box with iptables
> eth0 192.168.1.1
> eth1 ext_ip
> internet
>
> I use the following to allow internal clients to access the internet.
> iptables -t nat -A POSTROUTING -o eth1 -s 192.168.1.0/24 -d 0/0 -j
> MASQUERADE
>
> Which rules should i use to allow DCC to and from an internal Mirc
> client on ip 192.168.1.2
>
> I hope you can help me! ;o)
>
> Best regards Lars Nielsen
>
>
>
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: allow DCC through iptables nat box
2005-08-29 16:41 ` Sp0oKeR
@ 2005-08-29 18:24 ` Sorin Panca
0 siblings, 0 replies; 3+ messages in thread
From: Sorin Panca @ 2005-08-29 18:24 UTC (permalink / raw)
To: netfilter
I think this module is included in 2.6 kernel trees, isn't it? Please
correct me if i'm wrong... Thank you!
Sp0oKeR wrote:
> You can use Patch O Matic module
>
> 5.4 irc-conntrack-nat patch
>
> This patch by Harald Welte <laforge@gnumonks.org> allows DCC to work
> though NAT and connection tracking. By default, this module will track
> IRC connection on port 6667. But you can change this for another port
> with the `ports=xx' argument.
>
> http://www.netfilter.org/documentation/HOWTO//netfilter-extensions-HOWTO-5.html#ss5.4
>
> Regards,
>
> Sp0oKeR
>
> On 8/29/05, Lars Nielsen <lars@mit-web.dk> wrote:
>
>>Hey
>>
>>I have the following setup:
>>
>>LAN 192.168.1.0/24
>> Linux box with iptables
>> eth0 192.168.1.1
>> eth1 ext_ip
>>internet
>>
>>I use the following to allow internal clients to access the internet.
>>iptables -t nat -A POSTROUTING -o eth1 -s 192.168.1.0/24 -d 0/0 -j
>>MASQUERADE
>>
>>Which rules should i use to allow DCC to and from an internal Mirc
>>client on ip 192.168.1.2
>>
>>I hope you can help me! ;o)
>>
>>Best regards Lars Nielsen
>>
>>
>>
>
>
>
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2005-08-29 18:24 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-08-29 16:21 allow DCC through iptables nat box Lars Nielsen
2005-08-29 16:41 ` Sp0oKeR
2005-08-29 18:24 ` Sorin Panca
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.