Skip to content

Instantly share code, notes, and snippets.

@VTacius

VTacius/main.md

Last active December 1, 2023 19:43
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save VTacius/7af698991738e78d0a6c86d12a94e169 to your computer and use it in GitHub Desktop.
Save VTacius/7af698991738e78d0a6c86d12a94e169 to your computer and use it in GitHub Desktop.
Download ZIP
Configuración de masquerading básico usando firewall-cmd
Raw
main.md

Verificamos que tengamos las dos interfaces en las redes correspondientes

$ firewall-cmd --get-active-zones 
external
  interfaces: wlp0s20f0u11
internal
  interfaces: enp1s0

Configuramos el origen de la red internal

firewall-cmd --zone=internal --add-source 10.10.10.0/24
# TODO: Parece que en realidad no es necesario
firewall-cmd --zone=internal --add-masquerade

Configuramos una política que precisamente se encargue de hacer el enmascaramiento

firewall-cmd --permanent --policy eru-03-salida --add-ingress internal
firewall-cmd --permanent --policy eru-03-salida --add-ingress-zone internal
firewall-cmd --permanent --policy eru-03-salida --add-egress-zone external
firewall-cmd --permanent --policy eru-03-salida --set-target ACCEPT

Fuentes:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment