Udostępnienie Internetu W Fedorze 10 Do Windows Xp

[Piżol]

Bardzo dziękuję za pomoc, co do Firewalla, to zainstalowałem Firestartera

Prosiłbym o sprawdzenie czy teraz jest lepiej z moim Firewallem

 

iptables-save

# Generated by iptables-save v1.4.1.1 on Sun Jan 25 18:12:42 2009
*mangle
:PREROUTING ACCEPT [313:122405]
:INPUT ACCEPT [23:4222]
:FORWARD ACCEPT [240:100623]
:OUTPUT ACCEPT [37:6972]
:POSTROUTING ACCEPT [276:107555]
COMMIT
# Completed on Sun Jan 25 18:12:42 2009
# Generated by iptables-save v1.4.1.1 on Sun Jan 25 18:12:42 2009
*nat
:PREROUTING ACCEPT [63:18184]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A POSTROUTING -o wlan0 -j MASQUERADE 
COMMIT
# Completed on Sun Jan 25 18:12:42 2009
# Generated by iptables-save v1.4.1.1 on Sun Jan 25 18:12:42 2009
*filter
:INPUT DROP [0:0]
:FORWARD DROP [1:40]
:OUTPUT DROP [0:0]
:INBOUND - [0:0]
:LOG_FILTER - [0:0]
:LSI - [0:0]
:LSO - [0:0]
:OUTBOUND - [0:0]
-A INPUT -s 85.117.17.1/32 -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT 
-A INPUT -s 85.117.17.1/32 -p udp -j ACCEPT 
-A INPUT -s 217.70.48.6/32 -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT 
-A INPUT -s 217.70.48.6/32 -p udp -j ACCEPT 
-A INPUT -i lo -j ACCEPT 
-A INPUT -p icmp -m limit --limit 10/sec -j ACCEPT 
-A INPUT -d 255.255.255.255/32 -i wlan0 -j DROP 
-A INPUT -d 192.168.1.255/32 -j DROP 
-A INPUT -s 255.255.255.255/32 -j DROP 
-A INPUT -d 0.0.0.0/32 -j DROP 
-A INPUT -m state --state INVALID -j DROP 
-A INPUT -f -m limit --limit 10/min -j LSI 
-A INPUT -i wlan0 -j INBOUND 
-A INPUT -d 192.168.1.1/32 -i eth0 -j INBOUND 
-A INPUT -d 192.168.1.100/32 -i eth0 -j INBOUND 
-A INPUT -d 192.168.1.255/32 -i eth0 -j INBOUND 
-A INPUT -j LOG_FILTER 
-A INPUT -j LOG --log-prefix "Unknown Input" --log-level 6 
-A FORWARD -p icmp -m limit --limit 10/sec -j ACCEPT 
-A FORWARD -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu 
-A FORWARD -i eth0 -j OUTBOUND 
-A FORWARD -d 192.168.1.0/24 -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A FORWARD -d 192.168.1.0/24 -p udp -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A FORWARD -j LOG_FILTER 
-A FORWARD -j LOG --log-prefix "Unknown Forward" --log-level 6 
-A OUTPUT -s 192.168.1.100/32 -d 85.117.17.1/32 -p tcp -m tcp --dport 53 -j ACCEPT 
-A OUTPUT -s 192.168.1.100/32 -d 85.117.17.1/32 -p udp -m udp --dport 53 -j ACCEPT 
-A OUTPUT -s 192.168.1.100/32 -d 217.70.48.6/32 -p tcp -m tcp --dport 53 -j ACCEPT 
-A OUTPUT -s 192.168.1.100/32 -d 217.70.48.6/32 -p udp -m udp --dport 53 -j ACCEPT 
-A OUTPUT -o lo -j ACCEPT 
-A OUTPUT -s 255.255.255.255/32 -j DROP 
-A OUTPUT -d 0.0.0.0/32 -j DROP 
-A OUTPUT -m state --state INVALID -j DROP 
-A OUTPUT -o wlan0 -j OUTBOUND 
-A OUTPUT -o eth0 -j OUTBOUND 
-A OUTPUT -j LOG_FILTER 
-A OUTPUT -j LOG --log-prefix "Unknown Output" --log-level 6 
-A INBOUND -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A INBOUND -p udp -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A INBOUND -j LSI 
-A LSI -j LOG_FILTER 
-A LSI -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 1/sec -j LOG --log-prefix "Inbound " --log-level 6 
-A LSI -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j DROP 
-A LSI -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK RST -m limit --limit 1/sec -j LOG --log-prefix "Inbound " --log-level 6 
-A LSI -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK RST -j DROP 
-A LSI -p icmp -m icmp --icmp-type 8 -m limit --limit 1/sec -j LOG --log-prefix "Inbound " --log-level 6 
-A LSI -p icmp -m icmp --icmp-type 8 -j DROP 
-A LSI -m limit --limit 5/sec -j LOG --log-prefix "Inbound " --log-level 6 
-A LSI -j DROP 
-A LSO -j LOG_FILTER 
-A LSO -m limit --limit 5/sec -j LOG --log-prefix "Outbound " --log-level 6 
-A LSO -j REJECT --reject-with icmp-port-unreachable 
-A OUTBOUND -p icmp -j ACCEPT 
-A OUTBOUND -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A OUTBOUND -p udp -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A OUTBOUND -j ACCEPT 
COMMIT