http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_linux&no=130 [º¹»ç]
k-sec´Ô ¿Ã·Á ÁֽŠiptables ¸¶½ºÄ¿·¹À̵ù TIP
http://www.koreasecurity.net/ ¿¡¼ µû¿Â ±ÛÀÔ´Ï´Ù.
Á¦°¡ ¸®´ª½º¸¦ ¼¹ö·Î Çѵ¥´Â windows me°¡ ±ò·Á Àִ°÷Àº
Ŭ¶óÀ̾ðÆ®·Î ¾µ·Á±¸ Çϴµ¥¿ä[´ÙÀÌ·ºÆ® ÄÉÀÌºí »ç¿ëÇÏ°í ÀÖ±¸¿ä]
Á¤È®È÷ ¾î¶»°Ô ÀÔ·ÂÀ» ÇØ¾ß ÇÒÁö ¸·¸·Çؼ¿ä.
¹Ø¿¡¼ º¸¸éÀº
1.¸®´ª½º ¼¹öÃø ..
-----------------------------------------------------------------
vi /etc/sysconfig/network
FORWARD_IPV4=yes
GATEWAY=192.168.1.1
vi /etc/systl.conf
net.ipv.ip_forward=1
-----------------------------------------------------------------
¿©±â±îÁö°¡ ¸®´ª½º¿¡ ÀÔ·Â ÇϸéµÇÁö¿ä.
±Ù´ë ¹ØÀº ÀÌÇØ°¡ ÀüÇô ¾È°©´Ï´Ù. ¤Ð.¤Ð
2.Ȥ½Ã vi /etc/rc.d/rd.lacl ¿¡ ¹Ø¿¡ ¸í·É¾î¸¦ ÀÔ·Â ÇØÁÖ¸é µÇ´Â°Ç°¡¿ä
( vi /etc/rc.d/rc.local ¿¡ ¿©·¯ ¼³Á¤À» Ãß°¡Çؼ ÀÌ¿ëÇصµ µÈ´Ù.)
-----------------------------------------------------------------
ifconfig eth1:koreasecurity 192.168.1.1
iptable -t nat -A POSTROUTING -o eth0 -j MAQUERADE
iptables -t nat -L È®ÀÎ
iptables -t nat -D POSTROUTING 1 »èÁ¦ÇÒ °æ¿ì..
Ŭ¶óÀ̾ðÆ®
-----------------------------------------------------------------
3.¿øµµ¿ì: ³×ÀÓ¼¹ö¸¸ ÁÖÀÇ Çؼ ¼³Á¤ÇØÁÖ¸é µÈ´Ù ..
----->³×ÀÓ¼¹ö¶ó ÇÔÀº Á¦²¬·ç À̾߱â Çϸé Ŭ¶óÀ̾ðÆ®ÂÊ ip¸¦
ÀÔ·ÂÇÏ¸é µÇ³ª¿ä???????
4.¸®´ª½º
ifconfig eth0 192.168.1.126
route add default gw 192.168.1.1 dev eth0
ping 192.168.1.1
¾îµð¿¡ ¼³Á¤À» ÇØ¾ß ÇÒÁö ????
³Ê¹« Ãʺ¸¶ó ³ÐÀº ¾Æ·®À¸·Î ÀÌÇØÇØ Áֽñ¸¿ä ... ¸¹ÀÌÁ» °¥ÄÑ ÁÖ¼¼¿ä ^^;
ÁÁ¿î ÇÏ·ç º¸³»½Ã±¸¿ä ...¤»¤» |
Hit : 4153 Date : 2003/09/16 12:00
|