| To: | <cipe-l,AT,inka,DOT,de> |
| Subject: | Redhat9 CIPE |
| From: | "Naoki" <i_naoki,AT,mbf,DOT,nifty,DOT,com> |
| Date: | Sun, 20 Jul 2003 01:42:53 +0900 |
Hello ! I am trying to build CIPE VPN network on my Firewall with Redhat9 now. It seems that GUI tools made an original config file into /etc/sysconfig/network-scripts/ifcfg-cipcb0. In Redhat9 security-manual and Web information, the config file is /etc/cipe/options.cipcb0. It make me too confuse. <Case1> LAN1==Firewall-A==Internet==Firewall-B=LAN2 <Case2> LAN1==Firewall-C==Internet==Dial-up Client I guess, the config on Firewall-C can use for B and C. Because, Even if Firewall-B is using Dynamic DNS, Firewall-A can receive UDP packet such like C. Using NAT, (in Redhat security-manual), (iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE) Can this filter prevent to forward NetBIOS to internet by the other iptables ? If there is.... iptables -A FORWARD -o eth0 -p tcp --sport 137:139 -j DROP Can CIPE work correctly ? Please advise !