[FUGSPBR] apache acesso negado
lbie em click21.com.br
lbie em click21.com.br
Qua Ago 11 16:12:08 BRT 2004
Citando Márcio Luciano Donada <marcio em lists.slchapeco.org>:
> Qual a sua interface com a rede interna? E qual a interface com a rede
> externa (mostra o resultado do ifconfig pra gente)
>
> OBS: Por favor, edite as mensagens antes de enviar para a lista.
>
;Tem um pc que faz o NAT com as regras e tudo mais, o hostname é Tempestade
;
Tempestade# ifconfig
rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 192.9.0.1 netmask 0xfffffff8 broadcast 192.9.0.7
inet6 fe80::202:44ff:fe35:415%rl0 prefixlen 64 scopeid 0x1
inet 192.10.0.1 netmask 0xfffffff8 broadcast 192.10.0.7
inet 192.11.0.1 netmask 0xfffffffc broadcast 192.11.0.3
inet 192.11.1.1 netmask 0xfffffffc broadcast 192.11.1.3
inet 192.11.2.1 netmask 0xfffffffc broadcast 192.11.2.3
inet 192.11.3.1 netmask 0xfffffffc broadcast 192.11.3.3
inet 192.12.0.1 netmask 0xfffffffc broadcast 192.12.0.3
inet 192.12.2.1 netmask 0xfffffffc broadcast 192.12.2.3
inet 192.12.3.1 netmask 0xfffffffc broadcast 192.12.3.3
inet 192.13.0.1 netmask 0xfffffffc broadcast 192.13.0.3
inet 192.13.1.1 netmask 0xfffffffc broadcast 192.13.1.3
inet 192.12.1.1 netmask 0xfffffffc broadcast 192.12.1.3
ether 00:02:44:35:04:15
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 200.1.2.4 netmask 0xffffffc0 broadcast 200.1.2.63
inet6 fe80::2a0:c9ff:feef:cdf0%fxp0 prefixlen 64 scopeid 0x2
inet 200.1.2.10 netmask 0xffffffff broadcast 200.1.2.10
inet 200.1.2.11 netmask 0xffffffff broadcast 200.1.2.11
inet 200.1.2.12 netmask 0xffffffff broadcast 200.1.2.12
inet 200.1.2.13 netmask 0xffffffff broadcast 200.1.2.13
inet 200.1.2.14 netmask 0xffffffff broadcast 200.1.2.14
ether 00:a0:c9:ef:cd:f0
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
;
;e outro pc que faz o cache (SQUID) e o DNS que se chama mateus
;
mateus# ifconfig
sis0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 200.1.2.2 netmask 0xffffffc0 broadcast 200.1.2.63
inet6 fe80::20d:87ff:fe0a:dd7f%sis0 prefixlen 64 scopeid 0x1
ether 00:0d:87:0a:dd:7f
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
rl0: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 1500
ether 00:e0:a0:00:0e:a6
media: Ethernet autoselect (10baseT/UTP)
status: no carrier
;
;
;Todos os dois tem um arquivo de regras chamado ipfw.sh
;no tempestade funciona assim
;
####### inicio ipfw.sh (tempestade)
# Link 128K A
natd -p 10 -a 200.1.2.10
ipfw add 10 divert 10 all from any to 200.1.2.10/32 in
# Link 128K A - Cliente ( USER )
ipfw add 100 divert 10 all from 192.10.0.2/32 to any out
####### fim do ipfw.sh
;
;outra coisa importante é o arquivo "rc.conf" do tempestade
;
########## inicio rc.conf (tempestade)
defaultrouter="200.1.2.2"
gateway_enable="YES"
hostname="tempestade.doido.com.br"
######### fim do rc.conf
;
;Bom no "mateus" é assim
;
########### incio ipfw.sh (mateus)
ipfw add 19000 allow tcp from 200.1.2.2/32 to any out via sis0
ipfw add 19100 fwd 200.1.2.2,3128 tcp from any to any 80 in via sis0
######### fim ipfw.sh
;
;
########### incio rc.conf (mateus)
defaultrouter="200.166.29.1"
gateway_enable="YES"
hostname="mateus.interapida.com.br"
########### fim rc.conf
;
;
;
___________________________________________________________________________________
Acesse nosso portal www.click21.com.br
Porque internet grátis, nem a Embratel pode fazer mais barato. Mas pode fazer melhor.
_______________________________________________________________
Para enviar um novo email para a lista: fugspbr em fugspbr.org
Sair da Lista: http://lists.fugspbr.org/listinfo.cgi
Historico: http://www4.fugspbr.org/lista/html/FUG-BR/
Mais detalhes sobre a lista de discussão freebsd