IPTABLES Help

Protecting your Linux box

IPTABLES Help

Postby mudasir » Mon Dec 04, 2006 4:50 am

Salam to all

I have installed FC5 with Squid 2.5 Stable 12 with TRANSPARENT PROXY....

I have enabled IP Packet Forwarding... and redirected all traffic from port 80 to 8080.....

but the problem i am facing is that none of the chat messengers are working. MSN is working but Voice and Video chat can not be done on it...

when i enter PROXY in yahoo messenger it works but again Voice and Video Chat can not be done on it...

I have applied these rule to make YAHOO and MSN work perfectly....

# /sbin/iptables -t nat -F
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 10.0.0.1/255.0.0.0 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 10.0.0.1/255.0.0.0 -p TCP --dport 5000:5010 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 10.0.0.1/255.0.0.0 -p UDP --dport 5000:5010 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 10.0.0.1/255.0.0.0 -p TCP --dport 1863 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 10.0.0.1/255.0.0.0 -p UDP --dport 1863 -j MASQUERADE


Still YAHOO and MSN Messengers are not working...

what i want to do is to allow all chat messengers like YAHOO, MSN, PALTALK, EYEBALL CHAT, MIRC, etc. to all client of network 10.0.0.0 and 10.0.1.0

So is there any way by which i will be able to do that...

I have to lan cards on server machine

eth0 connected to ADSL modem
eth1 connected to local network

IP address of eth0 192.168.1.5
IP address of eht1 10.0.0.1

IP address of ADSL Modem is 192.168.1.1


I also want to know is there any method to test wheather tranxparent proxy is working or not...
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Re:

Postby LinuxFreaK » Mon Dec 04, 2006 9:36 am

Dear mudasir,
Salam,

Read about Squid. What is squid and what it will do ?

FYI, http://www.linuxpakistan.net/forum2x/vi ... php?t=6122

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby mudasir » Tue Dec 05, 2006 6:06 pm

Salam Farrukh Bhai.

I know that squid has nothing to do with messengers. And the IPTABLES rules that i have stated in my post, you gave them to me, but still i am having problem in running my chat messengers, thats why i am asking about IPTABLES help.

Hope you understand my Problem. I know its quite annoying to answer the same question everytime, but the problem is still there after all these posts. Thats why i am asking the same question again and again.

How to make all chat messengers work, If not all then minumum of YAHOO, MSN, PALTALK, EYEBALL and MIRC.....

These are the chat messengers being used on my network......

I hope you will solve my problem.....
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Postby lambda » Tue Dec 05, 2006 6:21 pm

mudasir wrote:I know its quite annoying to answer the same question everytime, but the problem is still there after all these posts.
he does not have to answer the same question every time. no one does.

on the top-left of every page of this forum, there is a search bar. it uses google's index of this site. use it to find the answer to your question. believe me, you're not the first person to ask this question.

I hope you will solve my problem.....
you now have the means and resources to solve your problem. i hope you'll use them.
lambda
Major General
 
Posts: 3452
Joined: Tue May 27, 2003 7:04 pm
Website: http://www.hungry.com/~fn/
Location: Lahore

Postby kbukhari » Sun Dec 10, 2006 6:40 pm

you also nead to MAQUERADE tcp/udp port 9 and 7001 for msn chat
and for yahoo tcp 21 , 23 , 25 , 5000:5100 tcp/udp 5060
--
Syed Kashif Ali Bukhari
+92-345-8444420
http://sysadminsline.com
http://kashifbukhari.com
kbukhari
Major General
 
Posts: 1222
Joined: Sat Dec 31, 2005 12:29 am
Website: http://kashifbukhari.com
Location: Lahore


Return to “%s” Security

Who is online

Users browsing this forum: No registered users and 3 guests

cron