Re: [Bastille-linux-discuss] IP Forwarding - What's wrong with this?
This tool locks down Linux and UNIX systems.
Brought to you by:
jay
Menu
▾
▴
Re: [Bastille-linux-discuss] IP Forwarding - What's wrong with this?
|
From: Albert W. <aewhale@ABS-CompTech.com> - 2003-10-27 12:44:10
|
Nerijus Baliunas wrote: >On Sun, 26 Oct 2003 22:39:31 -0500 Albert Whale <aewhale@ABS-CompTech.com> wrote: > > > >>I am attempting to forward the 443 port from an external source to an >>internal IP Address. What I installed on Bastille now is the following: >> >> > >You can do it in official Bastille way - copy portforward.sh from >/usr/share/Bastille/firewall to /etc/Bastille/firewall.d/pre-chain-split.d >and modify it to your needs. > >Regards, >Nerijus > > > > Well it seemed like a good idea: [/etc/Bastille/firewall.d] service bastille-firewall restart Setting up IP spoofing protection... done. Allowing traffic from trusted interfaces... done. Loading NAT modules... done. Setting up masquerading rules... done. Loading masquerading modules... done. Bad argument ` ' Try `iptables -h' or 'iptables --help' for more information. /sbin/bastille-netfilter: line 79: -d: command not found /sbin/bastille-netfilter: line 80: --to: command not found Bad argument ` ' Try `iptables -h' or 'iptables --help' for more information. /sbin/bastille-netfilter: line 82: -d: command not found Setting up chains for public/internal interface traffic... done. Setting up general rules... done. Setting up outbound rules... done. Any help attempting to debug this ? -- Albert E. Whale, CISSP - Sr. Security, Network, and Systems Consultant -------------------------------------------------------------------------------- http://www.abs-comptech.com & http://www.No-JunkMail.com ABS Computer Technology, Inc. - ESM, Computer & Networking Specialists SPAM Zapper - www.No-JunkMail.com - SPAM Stops Here. Founding Board of Directors of Pittsburgh FBI - InfraGard |