Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: routing rules for dmz in debian router.
Operating Systems Linux routing rules for dmz in debian router. Post 302337356 by sotich82 on Friday 24th of July 2009 02:12:59 AM
Old 07-24-2009
routing rules for dmz in debian router.
Hi to all.
There are eth0(wan) eth1(lan) and eth3(dmz) in my debian router.
Quote:
# uname -a
Linux internet 2.6.26-1-686 #1 SMP Sat Jan 10 18:29:31 UTC 2009 i686 GNU/Linux
In dmz is planing dns, ad, dhcp, smtp/pop/imap, https(web-based imap client). I don't configured rules on "iptables" and "route" loads for right relation lan clients with dmz services.


Please explain me example basic rules in that situation.
 

4 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Firewall - 2 Internet accesses - routing rules from source

Hello, I would like to modify my firewall configuration for being able to handle 2 internet connections in my Red zone. I would then like to configure some selecting routing rules depending on the internal source. Actual configuration: ===================== 1 router A (ISP)... (1 Reply)
Discussion started by: el70
1 Replies

2. UNIX for Dummies Questions & Answers

Remote Unix printing to my WinXP works with no router. How can I make it work through my router?

I set up remote printing on a clients Unix server to my Windows XP USB printer. My USB printer is connected directly to my PC (no print server and no network input on printer). With my Win XP PC connected to my cable modem (without the router), i can do lp -dhp842c /etc/hosts and it prints. I... (7 Replies)
Discussion started by: jmhohne
7 Replies

3. IP Networking

Dual Router (routing problem)

This is the network configuration I have: +-------------------------------------------------+ +===========+ | | | | | INTERNET |---| LINUXBOX2 | ... (4 Replies)
Discussion started by: matteo
4 Replies

4. UNIX for Advanced & Expert Users

Debian As A Router [Not Assigning IPs]

I've been trying to set up an old desktop as a wifi router. I've looked at a lot of information online, but mostly this: https://seravo.fi/2014/create-wireless-access-point-hostapd I've gotten where I can see the ssid from my phone and laptop. However, it starts to connect, but never receives... (1 Reply)
Discussion started by: Azrael
1 Replies

LEARN ABOUT LINUX

pppoe-relay

PPPOE-RELAY(8)						      System Manager's Manual						    PPPOE-RELAY(8)

NAME

       pppoe-relay - user-space PPPoE relay agent.

SYNOPSIS

       pppoe-relay [options]

DESCRIPTION

       pppoe-relay is a user-space relay agent for PPPoE (Point-to-Point Protocol over Ethernet) for Linux.  pppoe-relay works in concert with the
       pppoe client and pppoe-server server.  See the OPERATION section later in this manual for details on how pppoe-relay works.

OPTIONS

       -S interface
	      Adds the Ethernet interface interface to the list of interfaces managed by pppoe-relay.  Only PPPoE servers may be connected to this
	      interface.

       -C interface
	      Adds the Ethernet interface interface to the list of interfaces managed by pppoe-relay.  Only PPPoE clients may be connected to this
	      interface.

       -B interface
	      Adds the Ethernet interface interface to the list of interfaces managed by pppoe-relay.  Both PPPoE clients and servers may be  con-
	      nected to this interface.

       -n num Allows at most num concurrent PPPoE sessions.  If not specified, the default is 5000.  num can range from 1 to 65534.

       -i timeout
	      Specifies  the  session idle timeout.  If both peers in a session are idle for more than timeout seconds, the session is terminated.
	      If timeout is specified as zero, sessions will never be terminated because of idleness.

	      Note that the idle-session expiry routine is never run more frequently than every 30 seconds, so the timeout  is	approximate.   The
	      default value for timeout is 600 seconds (10 minutes.)

       -F     The -F option causes pppoe-relay not to fork into the background; instead, it remains in the foreground.

       -h     The -h option prints a brief usage message and exits.

OPERATION

       pppoe-relay  listens  for  incoming PPPoE PADI frames on all interfaces specified with -B or -C options.  When a PADI frame appears, pppoe-
       relay adds a Relay-Session-ID tag and broadcasts the PADI on all interfaces specified with -B or -S options (except the interface on  which
       the frame arrived.)

       Any PADO frames received are relayed back to the client which sent the PADI (assuming they contain valid Relay-Session-ID tags.)  Likewise,
       PADR frames from clients are relayed back to the matching access concentrator.

       When a PADS frame is received, pppoe-relay enters the two peers' MAC addresses and session-ID's into a hash table.  (The session-ID seen by
       the  access  concentrator  may  be  different  from that seen by the client; pppoe-relay must renumber sessions to avoid the possibility of
       duplicate session-ID's.)  Whenever either peer sends a session frame, pppoe-relay looks up the session entry in the hash table  and  relays
       the frame to the correct peer.

       When a PADT frame is received, pppoe-relay relays it to the peer and deletes the session entry from its hash table.

       If  a client and server crash (or frames are lost), PADT frames may never be sent, and pppoe-relay's hash table can fill up with stale ses-
       sions.  Therefore, a session-cleaning routine runs periodically, and removes old sessions from the hash table.	A  session  is	considered
       "old"  if  no  traffic  has been seen within timeout seconds.  When a session is deleted because of a timeout, a PADT frame is sent to each
       peer to make certain that they are aware the session has been killed.

EXAMPLE INVOCATIONS

       pppoe-relay -C eth0 -S eth1

       The example above relays frames between PPPoE clients on the eth0 network and PPPoE servers on the eth1 network.

       pppoe-relay -B eth0 -B eth1

       This example is a transparent relay -- frames are relayed between any mix of clients and servers on the eth0 and eth1 networks.

       pppoe-relay -S eth0 -C eth1 -C eth2 -C eth3

       This example relays frames between servers on the eth0 network and clients on the eth1, eth2 and eth3 networks.

AUTHORS

       pppoe-relay was written by David F. Skoll <dfs@roaringpenguin.com>.

       The pppoe home page is http://www.roaringpenguin.com/pppoe/.

SEE ALSO

       pppd(8), pppoe(8), pppoe-sniff(8), pppoe-relay(8), /usr/share/doc/pppoe/README.Debian.gz

4th Berkeley Distribution					  26 January 2001						    PPPOE-RELAY(8)
All times are GMT -4. The time now is 03:47 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy