Warum klappt das mit dem Esel noch nicht? Was habe ich noch verkehrt gemacht?
???
Hier meine derzeitigen Einstellungen. WinXP Rechner hat die IP 192.168.0.3
# 1.)
# Should the Firewall run in quickmode?
#
# Choice: "yes" or "no", if not set defaults to "no"
#
FW_QUICKMODE="yes"
## Type: string
# 2.)
#
FW_DEV_EXT="ppp0"
## Type: string
#
# 3.)
# Which is the interface that points to the internal network?
#
FW_DEV_INT="eth1"
## Type: string
#
# 4.)
#
FW_DEV_DMZ=""
## Type: yesno
## Default: no
#
# 5.)
#
FW_ROUTE="yes"
## Type: yesno
## Default: no
#
# 6.)
#
FW_MASQUERADE="no"
## Type: string
# e.g. "ippp0" or "$FW_DEV_EXT"
FW_MASQ_DEV="$FW_DEV_EXT"
## Type: string
#
FW_MASQ_NETS="0/0"
## Type: yesno
## Default: yes
# 7.)
# "yes" is a good choice
FW_PROTECT_FROM_INTERNAL="no"
## Type: yesno
## Default: yes
#
# 8.)
#
FW_AUTOPROTECT_SERVICES="no"
## Type: string
#
# 9.)
#
# Common: smtp domain
FW_SERVICES_EXT_TCP="4665:4665 5801 5901 4669 4670 4242 http https pop3 pop3s smtp"
## Type: string
# Common: domain
FW_SERVICES_EXT_UDP="4665 4672 4679 4246 10332"
# Common: domain
## Type: string
# For VPN/Routing which END at the firewall!!
FW_SERVICES_EXT_IP=""
## Type: string
#
# Common: smtp domain
FW_SERVICES_DMZ_TCP=""
## Type: string
# Common: domain
FW_SERVICES_DMZ_UDP=""
## Type: string
# For VPN/Routing which END at the firewall!!
FW_SERVICES_DMZ_IP=""
## Type: string
#
# Common: ssh smtp domain
FW_SERVICES_INT_TCP=""
## Type: string
# Common: domain syslog
FW_SERVICES_INT_UDP=""
# For VPN/Routing which END at the firewall!!
FW_SERVICES_INT_IP=""
## Type: string
# 9a.)
# (Common: ssh smtp)
FW_SERVICES_QUICK_TCP=""
## Type: string
# QUICKMODE: UDP services open to external networks (InterNet)
# (Common: isakmp)
FW_SERVICES_QUICK_UDP=""
## Type: string
# QUICKMODE: IP protocols unconditionally open to external networks (InterNet)
# (For VPN firewall that is VPN gateway: 50)
FW_SERVICES_QUICK_IP=""
## Type: string
#
# 10.)
#
FW_TRUSTED_NETS=""
## Type: string
#
# 11.)
# Common: "ftp-data", better is "yes" to be sure that everything else works
FW_ALLOW_INCOMING_HIGHPORTS_TCP="DNS"
## Type: string
# Common: "DNS" or "domain ntp", better is "yes" to be sure ...
FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS"
## Type: yesno
## Default: yes
# 12.)
#
FW_SERVICE_AUTODETECT="yes"
# Autodetect the services below when starting
## Type: yesno
## Default: no
# Also FW_ALLOW_INCOMING_HIGHPORTS_UDP needs to be "yes"
FW_SERVICE_DNS="no"
## Type: yesno
## Default: no
# if you use dhclient to get an ip address you have to set this to "yes" !
FW_SERVICE_DHCLIENT="no"
## Type: yesno
## Default: no
# set to "yes" if this server is a DHCP server
FW_SERVICE_DHCPD="no"
## Type: yesno
# tcp port 3128 to allow remote access to the squid proxy service.
FW_SERVICE_SQUID="no"
## Type: yesno
## Default: no
# set to "yes" if this server is running a samba server. You still have to
# open the tcp port 139 to allow remote access to SAMBA.
FW_SERVICE_SAMBA="no"
## Type: string
#
# 13.)
#
FW_FORWARD=""
# Beware to use this!
## Type: string
#
# 14.)
# Hint: if FW_DEV_MASQ is set to the external interface you have to set
FW_FORWARD_MASQ="0/0,192.168.0.3,tcp,4670 192.168.0.3,udp,10332"
# Beware to use this!
## Type: string
#
# 15.)
#
FW_REDIRECT=""
fckoelnuser Gast |
