I am using V4.1.1 as a proxy/firewall. I was wondering if there was a way of assigning a port on the outside adaptor (eth0 = internet and eth1 = lan). so if a person connects to port 2780 using TCP from the internet that I could route the connection to a internal LAN machine. So it would appear to the outside use that the service on 2780 was running on the e-smith box but in fact it's running on a machine inside (192.168.1.80:2780). Has anyone done this?
Also I want to be able to block some outbound ports as well. So people on my LAN cannot use programs like Mirc or Napster.
I know the above two things can be done in IPchains but does E-smith override the ipchains rules? and what are the commends to do this in root.
Thankx
Jean-Guy
0 Replies
613 Views