i have tried this set of rules above and i cant send files. does this set of rules work for anyone????
192.168.1.3 = MY WIN98 PC
192.168.1.1 = LINUX SERVER ETH0
XXX.XXX.XXX.XXX = SERVERS INTERNET IP ETH1
/sbin/ipchains -F
# Allow NAT for all IP internal
/sbin/ipchains -A forward -s 192.168.1.0/24 -j MASQ
# allow my client access to firewalls input/output chains
/sbin/ipchains -A input -i eth0 -s 192.168.1.3 -j ACCEPT
/sbin/ipchains -A output -i eth0 -d 192.168.1.3 -j ACCEPT
# allow MSN trusted servers only.
/sbin/ipchains -A output -p tcp -s xxx.xxx.xxx.xxx 1023:65535 --dport 1863 -j ACCEPT
/sbin/ipchains -A input -p tcp ! -y -s 64.4.13.0/24 ---sport 1863 -d xxx.xxx.xxx.xxx 1023:65535 -j ACCEPT
# Don't forget to stop spoofing etc etc etc
/sbin/ipchains -A input -i eth1 -s 10.0.0.0/8 -d 0/0 -j DENY -l
/sbin/ipchains -A input -i eth1 -s 172.16.0.0/12 -d 0/0 -j DENY -l
/sbin/ipchains -A input -i eth1 -s 192.168.0.0/16 -d 0/0 -j DENY -l
/sbin/ipchains -A input -i eth1 -s 127.0.0.0/8 -d 0/0 -j DENY -l
/sbin/ipchains -A input -i eth1 -s 255.255.255.255 -j DENY -l
/sbin/ipchains -A input -i eth1 -d 0.0.0.0 -j DENY -l
I must admit its driving me nuts not been able to send files
Can anyone stop the suffering
Cheers
________________________
Have Fun