| To: | <cipe-l,AT,inka,DOT,de> |
| Subject: | Re: Redhat9 CIPE |
| From: | "Naoki" <i_naoki,AT,mbf,DOT,nifty,DOT,com> |
| Date: | Thu, 24 Jul 2003 00:26:29 +0900 |
| References: | <002201c34e14$cedabce0$c801a8c0@naoki3> |
Hi, Finally, I could build CIPE VPN as below. 192.168.0.0/24 192.168.10.0/24 LAN1----------GW1========GW2------------LAN2 There is a WindowsPC on each LAN. These PCs could transfer the file each other.I could cfm by ethereal. But all WindowsPC can see only by IP address. Do I need WINS server ? Or, Are there any ways to see PC name ? ----- Original Message ----- From: "Naoki" <i_naoki,AT,mbf,DOT,nifty,DOT,com> To: <cipe-l,AT,inka,DOT,de> Sent: Sunday, July 20, 2003 1:42 AM Subject: Redhat9 CIPE > Hello ! > > I am trying to build CIPE VPN network on > my Firewall with Redhat9 now. > > It seems that GUI tools made an original config > file into /etc/sysconfig/network-scripts/ifcfg-cipcb0. > > In Redhat9 security-manual and Web information, > the config file is /etc/cipe/options.cipcb0. > > It make me too confuse. > > > <Case1> > LAN1==Firewall-A==Internet==Firewall-B=LAN2 > <Case2> > LAN1==Firewall-C==Internet==Dial-up Client > > I guess, the config on Firewall-C can use for B and C. > Because, Even if Firewall-B is using Dynamic DNS, > Firewall-A can receive UDP packet such like C. > > Using NAT, (in Redhat security-manual), > (iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE) > Can this filter prevent to forward NetBIOS to internet by the other iptables > ? > If there is.... > iptables -A FORWARD -o eth0 -p tcp --sport 137:139 -j DROP > Can CIPE work correctly ? > > Please advise ! > > > > -- > Message sent by the cipe-l,AT,inka,DOT,de mailing list. > Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body > Other commands available with "help" in body to the same address. > CIPE info and list archive: <URL:http://sites.inka.de/~bigred/devel/cipe.html> >