Changes between Version 11 and Version 12 of Internal/OpenFlow/miscUnix

Timestamp:

Jun 7, 2012, 7:27:57 PM (13 years ago)

Author:

akoshibe

Comment:

—

Internal/OpenFlow/miscUnix

@@ -10 +10 @@
  * process I/O redirection (gdb)
  * fixing garbled text (gcc)
+[#net Network] Various networking-related things.
+ * Linux NAT box with `ufw`
 [#print Printing] quick CUPS setup [[BR]]
 [#fortune one-liners] miscellaneous single-sentence tips. [[BR]]
@@ -150 +152 @@
 Set it the same for both local and remote machines if it's happening over SSH. 
 ----
+= Networking-related odds and ends = #net
+Various non-experimental network setups, usually done for convenience.
+== NAT box with `ufw`. ==
+source: https://nowhere.dk/articles/tip_nat_with_ubuntus_ufw_firewall
+`ufw` is your standard Linux firewall, and comes with Ubuntu server edition. Turning a multi-interface Linux box into a router is a matter of the following steps:
+ 1. configure IP forwarding
+edit /etc/default/ufw :
+{{{
+DEFAULT_FORWARD_POLICY="ACCEPT"
+}}}
+and /etc/ufw/sysctl.conf :
+{{{
+net.ipv4.ip_forward=1
+}}}
+ 2. set up IP masquerading in `ufw`   
+edit /etc/ufw/before.rules, just after the header :
+{{{
+# nat Table rules
+ *nat
+ :POSTROUTING ACCEPT [0:0]
+
+ # Forward traffic through ppp0 - Change to match you out-interface
+ -A POSTROUTING -s 192.168.1.0/24 -o ppp0 -j MASQUERADE
+
+ # don't delete the 'COMMIT' line or these nat table rules won't
+ # be processed
+ COMMIT
+}}}
+The address block after -s should match the address block behind the NAT firewall. 
+
+ 3. restart ufw:
+{{{
+sudo ufw disable && sudo ufw enable
+}}}
+
+----
 == Printing setup with CUPS. == #print
  * ref: http://linuxcourse.rutgers.edu/howto/cups_printing.html