My Pastes
Public Pastes
Layout Width
Share Pastebin
Guest
Public paste!

Untitled

By: a guest | Mar 19th, 2010 | Syntax: None | Size: 0.80 KB | Hits: 31 | Expires: Never
Download | Raw | Embed | Report abuse
Copy text to clipboard
  1. BEN="10.0.8.49"
  2. VM="10.0.8.47"
  3. WAN="##"
  4. LAN="10.0.8.50"
  5. WANDEV="eth0"
  6. LANDEV="eth1"
  7.  
  8. #Flush old rules
  9. /sbin/iptables -F
  10. /sbin/iptables -X
  11. /sbin/iptables -Z
  12. /sbin/iptables -t nat -F
  13.  
  14. #enable routing
  15. /bin/echo "1" > /proc/sys/net/ipv4/ip_forward
  16.  
  17. #Set up SNAT
  18. iptables -t nat -A POSTROUTING -o eth0 -s 10.0.8.0/24 -j SNAT --to $WAN
  19. iptables -t nat -A POSTROUTING -o eth1 -m conntrack --ctstate DNAT -j LOG --log-prefix 'conntrack'
  20. iptables -t nat -A POSTROUTING -o eth1 -m conntrack --ctstate DNAT -j SNAT --to-source $WAN
  21.  
  22. #PREROUTING rules
  23. #DNS
  24. /sbin/iptables -t nat -A PREROUTING -i eth1 -p udp --dport 53 -j DNAT --to 68.94.157.1:53
  25. #WEB SERVER
  26. #/sbin/iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j LOG
  27. /sbin/iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to $VM:80
create new paste | create new version of this paste RAW Paste Data