레드햇에서 ipchains 사용
/etc/rc.d/rc.firewall
#!/bin/sh/sbin/depmod -a/sbin/modprobe ip_masq_ftp #/sbin/modprobe ip_masq_raudio #/sbin/modprobe ip_masq_irc #/sbin/modprobe ip_masq_quake ports=26000,27000,27910,27960 #/sbin/modprobe ip_masq_cuseeme #/sbin/modprobe ip_masq_vdolive echo “1” > /proc/sys/net/ipv4/ip_forward /sbin/ipchains -M -S 7200 10 160 /sbin/ipchains -P forward DENY /sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ /sbin/ipchains -A forward -s 192.168.1.0/24 -j MASQ
/etc/sysconfig/network
NETWORKING=yes
HOSTNAME=masq
GATEWAY=211.205.224.1
/etc/sysconfig/network-script/ifcfg-eth0
DEVICE=eth0
BOOTPROTO=static
BROADCAST=211.203.217.255
IPADDR=211.205.224.11
NETMASK=255.255.255.0
NETWORK=211.203.217.0
ONBOOT=yes
USERCTL=no
/etc/sysconfig/network-script/ifcfg-eth1
DEVICE=eth1
ONBOOT=yes
BOOTPROTO=none
BROADCAST=192.168.0.255
NETWORK=192.168.0.0
NETMASK=255.255.255.0
IPADDR=192.168.0.1
USERCTL=no
/etc/sysconfig/network-script/ifcfg-eth2
DEVICE=eth2
ONBOOT=yes
BOOTPROTO=none
BROADCAST=192.168.1.255
NETWORK=192.168.1.0
NETMASK=255.255.255.0
IPADDR=192.168.1.1
USERCTL=no
#! /bin/sh ifconfig eth0:0 192.168.0.1 iptables -A POSTROUTING -t nat -o eth0 -j MASQUERADE echo 1 > /proc/sys/net/ipv4/ip_forward
eth0 에 192.168.0.1 로 엘리어싱 해주고 nat설정했다.
LinuxTips