³õѧiptablesÅäÖÃDMZ
ÎÒÓÃlinux×öÁĘ̈firewall£¬eth0(WAN);eth1(OPT);eth2(LAN)
ÎÒÏëÔÚeth1ÉÏ×÷DMZÇø£¬ÇëÎÊÎÒÕâÑùÓÃiptables×ö¶Ôô£¿
[color=red]INPUT ACCEPT
OUTPUT ACCEPT
FORWARD DROP
-A FORWARD -i eth1 -o eth0 -j ACCEPT
-A FORWARD -i eth0 -o eth1 -j ACCEPT
-A FORWARD -i eth2 -o eth1 -j ACCEPT
-A FORWARD -i eth1 -o eth2 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -i eth2 -o eth0 -j ACCEPT
-A FORWARD -i eth0 -o eth2 -m state --state RELATED,ESTABLISHED -j ACCEPT[/color]
[color=#ff0000][/color]
»¹È±Ê²Ã´£¬Çë¸ßÊÖÖ¸µ¼~~~
ÉÏÃæÖ»¸ø³öDMZÅäÖ㬱ðµÄÏȲ»¹Ü£¡~~~
Ò³:
[1]