Sophie

Sophie

distrib > Mandriva > 9.2 > i586 > by-pkgid > a804ef007a99f7d26cf24253c2994680 > files > 488

howto-html-ja-9.1-0.5mdk.noarch.rpm

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
<HEAD>
 <META NAME="GENERATOR" CONTENT="SGML-Tools 1.0.9">
 <TITLE>Linux IPCHAINS-HOWTO: $B0lHLE*$JLdBj(B</TITLE>
 <LINK HREF="IPCHAINS-HOWTO-7.html" REL=next>
 <LINK HREF="IPCHAINS-HOWTO-5.html" REL=previous>
 <LINK HREF="IPCHAINS-HOWTO.html#toc6" REL=contents>
</HEAD>
<BODY>
<A HREF="IPCHAINS-HOWTO-7.html">$B<!$N%Z!<%8(B</A>
<A HREF="IPCHAINS-HOWTO-5.html">$BA0$N%Z!<%8(B</A>
<A HREF="IPCHAINS-HOWTO.html#toc6">$BL\<!$X(B</A>
<HR>
<H2><A NAME="s6">6. $B0lHLE*$JLdBj(B</A></H2>

<P>
<H2><A NAME="ss6.1">6.1 ipchains -L $B$r;H$&$H%U%j!<%:$7$^$9(B!</A>
</H2>

<P>DNS $B8!:w$r<u$1IU$1$J$$$N$G$7$g$&!#7k6I$O%?%$%`%"%&%H$K$J$C$F$7$^$$$^$9!#(B
ipchains $B$KBP$7$F(B `-n' ($B?tCM(B)$B%U%i%0$r;H$C$F$_$^$7$g$&!#(B
`-n' $B$O!"%M!<%`$G$N8!:w$r9T$$$^$;$s!#(B
<P>
<P>
<H2><A NAME="ss6.2">6.2 $BH?E>$,$G$-$^$;$s(B!</A>
</H2>

<P>`!'$B%*%W%7%g%s$NN>B&$K%9%Z!<%9$r$*$$$F!"(B`!' $B%*%W%7%g%s$rC1FH$G;H$o$J$1$l$P$$$1$^$;$s!#(B
(4.1.4.1 $B$GCm0U$7$^$7$?(B)$BE57?E*$J4V0c$$$G$9!#(B
<P>
<BLOCKQUOTE><CODE>
<PRE>
# ipchains -A input -i !eth0 -j DENY
#
</PRE>
</CODE></BLOCKQUOTE>
<P>`!eth0' $B$H8F$P$l$k%$%s%?!<%U%'!<%9$OB8:_$7$^$;$s$,!"(B ipchains $B$O$=$l$,$o$+$i$J$$$N$G$9!#(B
<P>($BLuCm(B: 
`!' $B$N;H$$J}$K4X$9$kCm0U$O!"(B 4$B>O$r;2>H!#(B
`!' $B%*%W%7%g%s$NA08e$N%9%Z!<%9$rK:$l$J$$$G2<$5$$!#(B)
<P>
<P>
<H2><A NAME="ss6.3">6.3 Masquerading $B$^$?$O(B Forwarding $B$,F0$-$^$;$s(B!</A>
</H2>

<P>$B%Q%1%C%H$N(B forwarding $B$,2DG=$K$J$C$F$$$k$N$+$I$&$+$r3NG'$7$F2<$5$$(B($B:G6a$N%+!<%M%k$G$O!"%G%U%)%k%H$G(B `$B;HMQ$7$J$$(B'$B$K$J$C$F$$$^$9!#%Q%1%C%H$O(B `forward' chain $B$r1[$($k$3$H$9$i$J$$$H$$$&$3$H$G$9(B)$B!#(B
root $B8"8B$G<!$N$h$&$KF~NO$9$l$PJQ99$G$-$^$9!#(B
<P>
<BLOCKQUOTE><CODE>
<PRE>
# echo 1 > /proc/sys/net/ipv4/ip_forward
#
</PRE>
</CODE></BLOCKQUOTE>
<P>
<P>$B$3$l$G$&$^$/$$$/$J$i!"Kh2s!"2DG=$K$J$k$h$&$K!"$*;H$$$N5/F0%9%/%j%W%H$N$I$3$+$K$3$N9T$r=q$$$F$*$/$3$H$,$G$-$^$9!#(B
$B$3$N%3%^%s%I$,F0$/A0$K%U%!%$%"%&%)!<%k$r@_Dj$7$?$$$O$:$G$9!#(B
$B$=$&$7$J$$$H!"(B($BGK4~$9$Y$-(B)$B%Q%1%C%H$rDL2a$5$;$F$7$^$&5!2q$rM?$($F$7$^$$$^$9!#(B
<P>
<P>
<H2><A NAME="ss6.4">6.4 -j REDIR $B$,F0$-$^$;$s(B!</A>
</H2>

<P>$B%j%@%$%l%/%H$rF0$+$9$?$a$K$O%Q%1%C%H$N(B forwarding ($B>e=R$r8+$F2<$5$$(B)$B$r5v2D$7$J$1$l$P$$$1$^$;$s!#(B
$B$=$&$7$J$$$H!"%k!<%F%#%s%0$N%3!<%I$O%Q%1%C%H$rMn$7$^$9!#(B
$B$=$3$G!"%j%@%$%l%/%H$N$_$r;H$C$F$$$F%U%)%o!<%G%#%s%0$OA4A3;H$C$F$$$J$$$J$i$P!"$3$N$3$H$KCm0U$7$F2<$5$$!#(B
<P>
<P>REDIRECT (input $B%A%'%$%s$K$"$k(B)$B$O!"%m!<%+%k%W%m%;%9$+$i$N@\B3$K$O8z2L$,$J$$$3$H$KCm0U$7$F2<$5$$!#(B
<P>($BLuCm(B: 
ipchains $B$N%*%W%7%g%s$K$D$$$F$O!"(Bman ipchains $B$G3NG'$7$F2<$5$$!#(B)
<P>
<H2><A NAME="ss6.5">6.5 $B%o%$%k%I%+!<%I%$%s%?!<%U%'!<%9$,F0$-$^$;$s(B!</A>
</H2>

<P>$B%+!<%M%k$N(B 2.1.102 $B$H(B 2.1.103 $BHG(B($B$=$7$F;d$,:n$C$?$$$/$D$+$N8E$$%Q%C%A(B)$B$K$O%P%0$,$"$j$^$7$?!#(B
$B$=$l$i$N%+!<%M%k$G$O!"(B(-i ppp+ $B$N$h$&$J(B)$B%o%$%k%I%+!<%I%$%s%?!<%U%'!<%9$,$&$^$/$$$+$J$$%(%i!<$rL@<($9$k(B ipchains $B%3%^%s%I$r@8@.$7$^$7$?!#(B
<P>
<P>$B$3$N7o$O!":G?7$N%+!<%M%k$H(B web $B%5%$%H$K$"$k(B 2.0.34 $B$N%Q%C%A$G$O=$@5$5$l$F$$$^$9!#(B
$B%+!<%M%k%=!<%9$r<j$G=$@5$9$k$J$i!"(B include/linux/ip_fw.h $B%U%!%$%k$N(B 63$B9T$"$?$j$r<!$N$h$&$KJQ99$7$^$9(B:
<P>
<BLOCKQUOTE><CODE>
<PRE>
#define IP_FW_F_MASK    0x002F  /* All possible flag bits mask   */
</PRE>
</CODE></BLOCKQUOTE>
<P>
<P>$B$3$l$O(B ``0x003F'' $B$rFI$`$Y$-$G$9!#$3$l$r=$@5$7!"%+!<%M%k$r:F9=C[$7$^$9!#(B
<P>
<P>
<H2><A NAME="ss6.6">6.6 TOS (Type of Service) $B$,F0$-$^$;$s(B!</A>
</H2>

<P>$B$3$l$O;d$N4V0c$$$G$7$?!#(B
Service field $B$N%?%$%W$r@_Dj$O!"(B 2.1.102 $B$+$i(B 2.1.111 $BHG$N%+!<%M%k$G$O<B:]$K$O(B Service $B$N%?%$%W$r@_Dj$G$-$J$$$N$G$9!#(B
$B$3$NLdBj$O!"(B2.1.112 $B$G$O=$@5$5$l$^$7$?!#(B
<P>
<H2><A NAME="ss6.7">6.7 ipautofw $B$H(Bipportfw $B$,F0$-$^$;$s(B!</A>
</H2>

<P>2.0.x $B$G$OF0$-$^$;$s!#(B
ipchains $B$H(Bipautofw $B$"$k$$$O(B ipportfw $B$KBP$9$kBg$-$J%Q%C%A$r:n@.$7!"0];}$9$k;~4V$,$"$j$^$;$s!#(B
<P>
<P>2.1.x $B$KBP$7$F$O!"<!$N$H$3$m$+$i(B Juan Ciarlante $B$N(B ipmasqadm $B$r%@%&%s%m!<%I$7$F2<$5$$!#(B
<A HREF="http://juanjox.linuxhq.com/">http://juanjox.linuxhq.com/</A>
$B$=$7$F!"(B<CODE>ipautofw</CODE> $B$d(B<CODE>ipportfw</CODE> $B$r;H$&$H$-!"(B <CODE>ipportfw</CODE> $B$N$+$o$j$K(B <CODE>ipmasqadm portfw</CODE> $B$rF~NO$7!"$=$7$F!"(B <CODE>ipautofw</CODE> $B$N$+$o$j$K(B<CODE>ipmasqadm autofw</CODE> $B$rF~NO$7$F!"$-$A$s$H;H$C$F2<$5$$!#(B
<P>
<H2><A NAME="ss6.8">6.8 xosview $B$,2u$l$F$$$^$9(B!</A>
</H2>

<P>1.6.0 $BHG$+!"$=$l0J9_$N$b$N$K$7$F2<$5$$!#$=$l$i$NHG$G$O!"%+!<%M%k(B 2.1.x $B$KBP$7$F$I$N$h$&$J(B firewall rule $B$bMW5a$7$^$;$s!#(B
$B$3$l$O(B 1.6.1 $B$G$^$@2u$l$F$$$k$H;W$o$l$k$J$i!"$=$N>l9g$OCx<T$K%P%0Js9p$r$7$F2<$5$$(B($B$=$l$O!";d$N<:GT$G$O$"$j$^$;$s(B)$B!#(B
<P>
<H2><A NAME="ss6.9">6.9 `-j REDIRECT' $B$G(B Segmentation $B%(%i!<$K$J$j$^$9(B!</A>
</H2>

<P>$B$3$l$O(B ipchains 1.3.3 $BHG$N%P%0$G$9$N$G!"?7$7$$HG$K%"%C%W%0%l!<%I$7$F2<$5$$!#(B
<P>
<P>
<H2><A NAME="no-timeout"></A> <A NAME="ss6.10">6.10 $B%^%9%+%l!<%G%#%s%0$N%?%$%`%"%&%HCM$r@_Dj$G$-$^$;$s(B!</A>
</H2>

<P>($B%+!<%M%k(B 2.1.x $B$K$*$$$F(B) 2.1.123 $B0J9_$G$OF0$-$^$;$s!#(B
2.1.124 $B$G@_Dj$7$F$_$k$H!"(B masquerading timeouts $B$O%+!<%M%k$r%m%C%/$7$F$7$^$$$^$9(B (net/ipv4/ip_fw.c $B%U%!%$%k$N(B 1328 $B9T$K$"$k(B <CODE>return</CODE> $B$r(B <CODE>ret = </CODE> $B$KJQ99$7$F2<$5$$(B)$B!#(B
2.1.125 $B$G$O!"$A$c$s$HF0$-$^$9!#(B
<P>$BCm(B: 4.1.1 $B$b8+$F2<$5$$!#(B
<P>
<H2><A NAME="ss6.11">6.11 IPX $B$r%U%!%$%"%&%)!<%k$7$?$$$G$9(B!</A>
</H2>

<P>$BB>$K$bF1$8$h$&$J$44uK>$,$"$k$H;W$$$^$9!#(B
$B;DG0$J$,$i!";d$N%3!<%I$O(B IP $B$r$9$Y$FLVMe$7$F$$$k$@$1$G$9$,!"9,$$$J$3$H$K!"(BIPX$B$r%U%!%$%"%&%*!<%k$9$k$N$KI,MW$J5!G=$O$9$Y$F$=$m$C$F$$$^$9!#(B
$B$=$l$rMxMQ$7$F$"$J$?$4<+?H$G%3!<%I$r=q$/I,MW$,$"$j$^$9$,!"2DG=$JHO0O$G;d$O4n$s$G$*<jEA$$$7$^$7$g$&!#(B
<P>$BLuCm(B: IPX $B$H$$$&$N$O!"(BNovell $B$K$h$k(B MS-DOS $B>e$N%M%C%H%o!<%/%W%m%H%3%k$G$9!#(B
IPX $B$K$D$$$F$O!"(BIPX-HOWTO$B$r;2>H$7$F2<$5$$!#(B
<A HREF="http://www.linux.or.jp/JF/JFdocs/IPX-HOWTO.html">http://www.linux.or.jp/JF/JFdocs/IPX-HOWTO.html</A><P>
<HR>
<A HREF="IPCHAINS-HOWTO-7.html">$B<!$N%Z!<%8(B</A>
<A HREF="IPCHAINS-HOWTO-5.html">$BA0$N%Z!<%8(B</A>
<A HREF="IPCHAINS-HOWTO.html#toc6">$BL\<!$X(B</A>
</BODY>
</HTML>

Perl :: Catalyst :: PostgreSQL :: RPM Valid HTML 4.01 Transitional