Wednesday, May 27, 2015

Configure IPTABLES to MASQUERADE traffic from a single host in lan and block other

Have a proxy server with squid installed. Want to configure iptables so as to allow a single ip in lan to access internet directly without directing the traffic through squid.
the following works to masquerade traffic but how to filter so that only one ip is given access
iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE



the current iptables configuration is default. It does't have any rules applied.The squid server does its usual of providing proxy internet service.



currently i am studying iptables, so not a expert in it.So kindly be specific to rules that should be applied.

No comments:

Post a Comment

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...