Hi
Problem 1] I am able to use IPTABLES for sharing Intenet and DNAT. The server used has a live IP and the code used to enable me to share Internet Access and DNAT to my internal server is
iptables -t nat -A POSTROUTING -j MASQUERADE
But as far as I understand MASQUERADE is used in case of Dynamic IPs and with Fixed or Live IP you can directly use DNAT and SNAT rules. But when I remove the above mentioned line I am not able to share Internet Access nor I am able to access internal servers from outside (DNAT).
Problem 2] I wish to block access to some sites from my network with some exception and I am using following rule but I am getting error when I add more than one site and more than one IP address.
iptables -A FORWARD -d www.hotmail.com www.yahoo.com -s 192.168.0.1 192.168.0.2 -j DROP
Regards
Joel
Get Your Private, Free E-mail from Indiatimes at http://email.indiatimes.com
Buy The Best In BOOKS at http://www.bestsellers.indiatimes.com
Bid for for Air Tickets @ Re.1 on Air Sahara Flights. Just log on to http://airsahara.indiatimes.com and Bid Now !