Table of Contents
Advertisement
5. Firewall Configs
5.1. Simple Firewall over PPP with internal mail
server
Mail Server
192.168.10.2
192.168.10.0
Private Firewall Public
Note: Be aware that with many Internet Providers it may be more suitable to turn LQR (link quality reporting) off on PPP
links, and instead use LCP Echo Request and Echo Reply messages to determine link quality (echo=on). Simply add
'lqr=off echo=on' to the PPP creation command.
Router A
#
# PPP Configuration
#
create ppp=0 over=syn0
#
# IP Configuration
#
enable ip
add ip int=ppp0 ip=200.200.200.1 mask=255.255.255.252
add ip int=eth0 ip=192.168.10.1
add ip route=0.0.0.0 next=0.0.0.0 mask=0.0.0.0 int=ppp0
#
# Firewall Configuration
# To enable out going ping see example 5.1.1
enable firewall
enable firewall notify=port,manager port=0
create firewall policy="main"
add firewall policy="main" int=eth0 type=private
add firewall policy="main" int=ppp0 type=public
add firewall poli="main" nat=enhanced int=eth0 gblin=ppp0 gblip=200.200.200.1
add firewall poli="main" ru=1 ac=allo int=ppp0 prot=tcp po=25 ip=192.168.10.2
gblip=200.200.200.1 gblport=25
Helpful Scripts
Revision 5.8.7; 5 April 2001
Site A
CentreCO M
A R 30 0
A cce ss Rout er
L AN
W AN
SYS T EM
200.200.200.0/30
Helpful Scripts
Internet
Page
21
Advertisement
Table of Contents
