我最近新安装的RedHat9.0,想通过.iptables做.NAT代理上网。昨天测试时发现用户不能正常收发邮件,但1.2.0.6的那台允许上网的机器一切正常。我linux的.IP是1.2.0.2/255.0.0.0,客户端通过NT的DHCP分配的IP是网段.1.2.0.0/16。 鲜花
下面是我的iptab.les内容: 杀毒
# G.enerated by iptables-save v1.2.7a on Tue Dec 27 11:35:48 20.05
*mangle
REROUTING ACCEPT [961:116170] http://upload.bbs.csuboy.com/Mon_1004/126_7038_e3d115ab71927ac.gif[/img] 乙肝
:INPUT ACCEPT [841:.9451.3] (广告)
:FORWA.RD ACCEPT [0:0] .
:OUTPUT ACCEPT [1071.:5273.23] .
OSTROUTING ACCEPT [1071:527323] http://upload.bbs.csuboy.com/Mon_1004/126_7038_e3d115ab71927ac.gif[/img](广告)
COMMIT
# .Completed on Tue Dec 27 11:35:48 .2005 (广告)
# Gene.rated b.y iptables-save v1.2.7a on Tue Dec 27 11:35:48 2005 婚庆
*filter
:INPUT ACCEPT [.845.:95661] 美容
:FORWARD ACCE.PT [0:0] 虚拟主机
:OUTPUT ACCEPT [1074.:52753.6] <性病>
COMMIT
# Completed .on Tue D.ec 27 11:35:48 2005 杀毒
# Generated. by iptables-save v1.2.7a on T.ue Dec 27 11:35:48 2005 婚庆
*nat
REROUTING ACCEPT [0:0] http://upload.bbs.csuboy.com/Mon_1004/126_7038_e3d115ab71927ac.gif[/img] 女人
:.OUTPUT ACCEPT [0:0]
OSTROUTING ACCEPT [0:0] http://upload.bbs.csuboy.com/Mon_1004/126_7038_e3d115ab71927ac.gif[/img]投资
-A POSTROUTING -p tcp -m tcp -s 1.2.0...0/16 --dport 110 -j MASQUERADE 服务器
-A POSTROUTING -p tcp -m tcp -s .1.2.0.0/16 --dport 25 -j MASQUE.RADE .
-A POSTROUTING -s 1.2.0..6 -j MASQUERA.DE 乙肝
COMMIT
# Completed .on Tue Dec 27 1.1:35:48 2005学习