Re: newbie question - what is the iptables equivalent of a Linksys "DMZ" ?

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Tobias DiPasquale <codeslinger@gmail.com>
To: netfilter <netfilter@lists.netfilter.org>
Subject: Re: newbie question - what is the iptables equivalent of a Linksys "DMZ" ?
Date: Sun, 14 Nov 2004 08:35:02 -0500	[thread overview]
Message-ID: <876ef97a041114053543dfe394@mail.gmail.com> (raw)
In-Reply-To: <1100392955.4894.25.camel@localhost.localdomain>

On Sat, 13 Nov 2004 19:42:35 -0500, David Williamson
<nospam1@nullcutter.com> wrote:
> There's a feature on the Linksys box, however, that I can't figure out
> how to implement, because I don't know how it worked on the Linksys box,
> and that is the DMZ function.  When a machine behind the router was
> going to serve as a, for example, game server (like Unreal Tournament
> 2004), the only way I could get it to work was to put that particular IP
> on the DMZ, which, I gather, meant that it looked like it was right on
> the net, unprotected, unrouted, unmasqed, et cetera.

If:

INTINT=<the interface from which packets from the outside come into
your local network>, and you want to DMZ 192.168.1.100...

Then:

# iptables -A FORWARD -o $INTINT -d 192.168.1.100 -j ACCEPT

That's all. Just accepting everything destined for the DMZ is good
enough to make it the DMZ. Repeat as necessary.

-- 
[ Tobias DiPasquale ]
0x636f6465736c696e67657240676d61696c2e636f6d

next prev parent reply	other threads:[~2004-11-14 13:35 UTC|newest]

Thread overview: 10+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2004-11-14  0:42 newbie question - what is the iptables equivalent of a Linksys "DMZ" ? David Williamson
2004-11-14  0:57 ` Chris Brenton
2004-11-14  2:18 ` Question; what is this netfilter logfile entry ? Bo Jacobsen
2004-11-14  7:42   ` Marc Haber
2004-11-14 10:51   ` Chris Brenton
2004-11-14 21:41     ` Bo Jacobsen
2004-11-14 17:02   ` Jason Opperisano
2004-11-14 13:35 ` Tobias DiPasquale [this message]
2004-11-14 16:44 ` newbie question - what is the iptables equivalent of a Linksys "DMZ" ? Jason Opperisano
2004-11-14 21:05   ` David Williamson

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=876ef97a041114053543dfe394@mail.gmail.com \
    --to=codeslinger@gmail.com \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.