Ahoj
potreboval bych pomoc nasatvit firewal tak aby pc s ip 192.168.1.40-44 mely pristup jen k webu a ostatni mely standartni pristup ke vsemu.
muzete mi poradit?
Uz sem zkousel mnoho variaci a nejak mi to nejde.
tady je nastaveni dhcp.conf
#
# $Id: client-all.conf,v 1.2 2002/12/31 15:44:34 ktsaou Exp $
#
# This configuration file will allow all requests originating from the
# local machine to be send through all network interfaces.
#
# No requests are allowed to come from the network. The host will be
# completely stealthed! It will not respond to anything, and it will
# not be pingable, although it will be able to originate anything
# (even pings to other hosts).
#
version 5
# Accept all client traffic on any interface
# interface any world
# client all accept
DEFAULT_CLIENT_PORTS="1024:65535"
server_icq_ports="tcp/5190"
client_icq_ports="default"
interface eth1 vnitrni
protection strong 10/sec 10
policy drop
server dns accept
server netbios_ns accept
server netbios_dgm accept
server netbios_ssn accept
server samba accept
server squid accept
server icmp accept
server ping accept
server ssh accept
server vnc accept
client all accept
interface eth0 vnejsi
protection strong 10/sec 10
policy drop
server icmp accept
# server ping accept
# server ssh accept
client dns accept
client icmp accept
client ping accept
client telnet accept
client http accept
client https accept
client ftp accept
client ntp accept
client ssh accept
client icq accept
client jabber accept
client webcache accept
router vnitrni2vnejsi inface eth1 outface eth0
masquerade
route all accept