search for: internal_net

...one side of the bridge is that fancy thing called the Internet. On the other side is my LAN. The bridge is the obvious demarcation line and a good place to put a firewall. Now, I have all my iptables stuff planned out, EXCEPT for nat. The usual way to do NAT: iptables -A POSTROUTING -t nat -s $INTERNAL_NET -j MASQUERADE iptables -A FORWARD -j ACCEPT Now, the problem I have is that my LAN is mixed NAT''d addresses and routable IPs. I have a host of FORWARD rules to determine which packets get sent onto which servers (routable IPs). My worry is that if I put in the "iptables -A FORWAR...

....hacklocalhost.com In my configuration I have internal SIP clients registering from 192.168.0.0/28 and my * address is at 192.168.0.100. Using the host address of the * box as the inside_net variable the audio from 192.168.0.0/28 was sent to the outside_addr variable giving one-way speech. Setting internal_net to the subnet address of 192.168.0.0 and inside_mask to 255.255.255.0 the call behaved correctly. darren

...hto ot tia opcii kato set timeout i optimization da e :] Macros: define common values, so they can be referenced and changed easily. extif="fxp1" # replace with actual external interface name i.e., dc0 intif="fxp0" # replace with actual internal interface name i.e., dc1 internal_net="172.16.0.0/16" external_addr="192.168.173.34" loif="lo0" set timeout { interval 30, frag 10 } set timeout { tcp.first 120, tcp.opening 30, tcp.established 86400 } set timeout { tcp.closing 900, tcp.finwait 45, tcp.closed 90 } set timeout { udp.first 60, udp.single 3...

...what could be causing the calls to drop out for one party so regularly. Any clues where I could look further to debug this would be most useful. local firewall: modprobe ip_conntrack_sip ports=5060 modprobe ip_nat_sip # probably not needed since everything is forwarded: $IPTABLES -A FORWARD -s $INTERNAL_NET -d $ANYWHERE -p udp --dport 5060 -j accept-log # sip remote Asterisk server: $MODPROBE ip_conntrack $MODPROBE ip_conntrack_sip ports=5060 $IPTABLES -A INPUT -s $ANYWHERE -d $PUBLIC_ADDR -p udp --dport 5060 -j accept-log # voip $IPTABLES -A OUTPUT -s $PUBLIC_ADDR -d $ANYWHERE -p udp --sport 5060...

Hi guys, i have a problem with a configuration what i''m trying to do. I have two computers with linux, A and B, connected in the same network with this configuration: PC1 A: 192.168.192.1 PC2 B: 192.168.192.30 The PC1 A is a firewall doing nat... this one is connected to the internet via an adsl modem and of course it have its own public ip , and the router B is a smtp server but