Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- iptables -t nat -A POSTROUTING -o p5p1 -j MASQUERADE
- iptables -t nat -A POSTROUTING -s 10.0.0.0/24 -j MASQUERADE
- iptables -I INPUT -p tcp -m tcp --dport 3129 -j ACCEPT
- modprobe xt_TPROXY
- modprobe xt_socket
- modprobe xt_mark
- modprobe nf_nat
- modprobe nf_conntrack_ipv4
- modprobe nf_conntrack
- modprobe nf_defrag_ipv4
- modprobe ipt_REDIRECT
- modprobe iptable_nat
- echo 1 > /proc/sys/net/ipv4/ip_forward
- echo 0 > /proc/sys/net/ipv4/conf/default/rp_filter
- echo 0 > /proc/sys/net/ipv4/conf/all/rp_filter
- echo 0 > /proc/sys/net/ipv4/conf/lo/rp_filter
- ip rule add fwmark 1 lookup 100
- ip route add local 0.0.0.0/0 dev lo table 100
- iptables -t mangle -F
- iptables -t mangle -X
- iptables -t mangle -N DIVERT
- iptables -t mangle -A DIVERT -j MARK --set-mark 1
- iptables -t mangle -A DIVERT -j ACCEPT
- iptables -t mangle -A INPUT -j ACCEPT
- iptables -t mangle -A PREROUTING -p tcp -m socket -j DIVERT
- iptables -t mangle -A PREROUTING -d <WAN IP> -p tcp -m multiport --dports 22,80,443,3127,3128,3129,8000,8080,10000 -j ACCEPT
- iptables -t mangle -A PREROUTING ! -d <WAN IP> -p tcp -m multiport --dports 80,8080,8000 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3127
- iptables -t mangle -A PREROUTING ! -d <WAN IP> -p tcp -m multiport --dports 443 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3129
- exit 0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
