Using Linux as a NAT Masquerade Router

  Рет қаралды 17,933

NetSecProf

NetSecProf

Күн бұрын

Пікірлер: 19
@BriGuyIT
@BriGuyIT 4 жыл бұрын
Thanks so much for this video! I've been combing through articles and forum posts all day and getting really confused but your procedure was just what I was looking for.
@echo_helloworld
@echo_helloworld 6 жыл бұрын
Nice Video . This video help me a lot to understand the nat concept practically. Thank you so much.
@rapideye85
@rapideye85 9 ай бұрын
Thank you very much. You see these commands everywhere on the net but it was diffcult to grasp. This will allow me to be able configure Fedora and get that going as a gateway. The benefit of doing this will be getting my DENY ACL list to accept a large amount of IPs and masks - Some firewall companies limit the amount of address or address objects you can configure which is bad for people like me who host their own stuff and are trying to mitigate DDoS without any restriction, but also without being forced to use pFSense or other solutions I don't need. I just want to stay within the Linux stack and be able to quickly block and edit ranges without any confines.
@pajeetsingh
@pajeetsingh 8 ай бұрын
Good job brother. Self reliance.
@2kcars507
@2kcars507 6 жыл бұрын
A burnt-out power supply on your router? No problem! Just use this one neat trick to turn your (dual-nic) linux box into a router! Great video.
@forresthopkinsa
@forresthopkinsa Жыл бұрын
Why use firewalld instead of iptables directly? And why aren't you explaining what these rules are actually doing?
@rapideye85
@rapideye85 9 ай бұрын
In CentOS and Fedora / RHEL - firewalld is enabled by default and is the recommended way to configure these types of things. If you want to use iptables you may but you must disable firewalld first.
@mirsahib596
@mirsahib596 Жыл бұрын
what is the difference between using nat masquerade through iptable vs firewall-cmd
@rapideye85
@rapideye85 9 ай бұрын
Mainly just syntax but firewalld is a bit more easier once you get used to it. You can easily move interfaces in and out of zones which eases configuration. I believe firewalld is merely a wrapper anyways so it does some of the work for you .
@shrek1412
@shrek1412 3 жыл бұрын
can we do same configuration with iptables command?
@pimm1975
@pimm1975 5 жыл бұрын
I put it use great explanation, thanks for sharing.
@jdkillian1965
@jdkillian1965 5 ай бұрын
Will this also work if I have a dhcp server configured and running or is it a different process?
@NetSecProf
@NetSecProf 5 ай бұрын
NAT is a separate process. You can run a DHCP server on the same machine if you want. The restrictions for the DHCP server is that the IP address associated with the DHCP service should be static and the DHCP service should have a pool of addresses you assign to the internal subnet.
@jdkillian1965
@jdkillian1965 5 ай бұрын
@@NetSecProf so basically install and configure the dhcp for the internal network and the process should work the same without any further configurations?
@NetSecProf
@NetSecProf 5 ай бұрын
@@jdkillian1965 Yes, basically. If you also have DNS for any internal services, you might need to either configure multiple views or configure a destination NAT that loops to internal addresses.
@marcodeoliveira2313
@marcodeoliveira2313 4 жыл бұрын
Nice video. Helps me a lot!
@AxelWerner
@AxelWerner 4 жыл бұрын
That was nice while we had native IPv4 networks and Addresses. Meanwhile the cheap arse ISPs only offer IPv6 (DS lite) internet connections and often do not allow to keep controll over your private LAN and therefor private IP address configuration. they often "dictate" how to connect your devices and what IPv6 addresses to use, without asking. THIS SUCKS! So we need to get back controll over our LAN. just like with IPv4 once. so how to do that? how to do IPv6 Masquerading/NATv6, routing, firewalling, dhcp, dns with IPv6 on the home network with cheap IPv6 only ISP ?
@forresthopkinsa
@forresthopkinsa Жыл бұрын
You can still NAT over IPv6 if you really want to, it's basically the same
@A_B_1917
@A_B_1917 3 жыл бұрын
2/10, doesn't work
Installing BIND DNS and Creating a Forward Zone
11:57
NetSecProf
Рет қаралды 11 М.
coco在求救? #小丑 #天使 #shorts
00:29
好人小丑
Рет қаралды 120 МЛН
Cat mode and a glass of water #family #humor #fun
00:22
Kotiki_Z
Рет қаралды 42 МЛН
人是不能做到吗?#火影忍者 #家人  #佐助
00:20
火影忍者一家
Рет қаралды 20 МЛН
Understanding Network Interfaces
15:45
Juriy Bura
Рет қаралды 61 М.
NAT Masquerading
6:01
SysEng Quick
Рет қаралды 18 М.
Linux File System/Structure Explained!
15:59
DorianDotSlash
Рет қаралды 4,2 МЛН
IPTABLES [PART-1] :  "UNDERSTANDING THE CONCEPT"
7:53
XPSTECH
Рет қаралды 139 М.
route for Viewing Routing Tables in Linux
18:17
Steven Gordon
Рет қаралды 38 М.
Detecting Brute Force Hackers with auth.log
4:44
NetSecProf
Рет қаралды 836
NAT - SNAT, DNAT, PAT & Port Forwarding
9:50
Sunny Classroom
Рет қаралды 359 М.
Linux - Network Configuration (ip, route, dhclient, systemd-resolve, netplan)
23:35
coco在求救? #小丑 #天使 #shorts
00:29
好人小丑
Рет қаралды 120 МЛН