API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 23rd, 2016
68
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.16 KB | None | 0 0
raw download clone embed print report
  1. # NOTES 1
  2.  
  3. sudo apt-get install iptables-persistent
  4.  
  5. sudo iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT -m state --state RELATED,ESTABLISHED
  6. sudo iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT
  7. sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
  8.  
  9. # uncomment #net.ipv4.ip_forward=1
  10. sudo nano /etc/sysctl.conf
  11. sudo sysctl -p /etc/sysctl.conf
  12. sudo service iptables-persistent save
  13.  
  14. sudo iptables -I FORWARD -p tcp -i eth0 -d 10.0.10.130 --dport 80 -j ACCEPT
  15. sudo iptables -I FORWARD -p tcp -i eth0 -d 10.0.10.130 --dport 3389 -j ACCEPT
  16. sudo iptables -t nat -A PREROUTING -p tcp -i eth0 -d 10.0.10.130 --dport 80 -j DNAT --to-destination 10.0.13.3:80
  17. sudo iptables -t nat -A PREROUTING -p tcp -i eth0 -d 10.0.10.130 --dport 3389 -j DNAT --to-destination 10.0.13.3:3389
  18.  
  19. sudo iptables -L
  20. sudo iptables -t nat -L
  21.  
  22.  
  23. # NOTES 2 (WORKING)
  24.  
  25. # Setup and install
  26.  
  27. sudo apt-get install iptables-persistent
  28. # uncomment #net.ipv4.ip_forward=1
  29. sudo nano /etc/sysctl.conf
  30. sudo sysctl -p /etc/sysctl.conf
  31. sudo service iptables-persistent save
  32.  
  33.  
  34. # NAT Across CIDR blocks except for 10.0.10.0/24 and 10.0.11.0/24 (= 10.0.10.0/23). 10.0.0.0/8 is ignored below.
  35.  
  36. sudo iptables -t nat -A POSTROUTING -o eth0 -d 0.0.0.0/5 -j MASQUERADE
  37. sudo iptables -t nat -A POSTROUTING -o eth0 -d 8.0.0.0/7 -j MASQUERADE
  38. sudo iptables -t nat -A POSTROUTING -o eth0 -d 11.0.0.0/8 -j MASQUERADE
  39. sudo iptables -t nat -A POSTROUTING -o eth0 -d 12.0.0.0/6 -j MASQUERADE
  40. sudo iptables -t nat -A POSTROUTING -o eth0 -d 16.0.0.0/4 -j MASQUERADE
  41. sudo iptables -t nat -A POSTROUTING -o eth0 -d 32.0.0.0/3 -j MASQUERADE
  42. sudo iptables -t nat -A POSTROUTING -o eth0 -d 64.0.0.0/2 -j MASQUERADE
  43. sudo iptables -t nat -A POSTROUTING -o eth0 -d 128.0.0.0/1 -j MASQUERADE
  44.  
  45. # Fix windows firewall to accept the appropriate ports. For testing, you can turn off windows firewall and ping across.
  46.  
  47. # Install DNS
  48. sudo apt-get update
  49. sudo apt-get install bind9 bind9utils bind9-doc
  50.  
  51. sudo service iptables-persistent save
  52.  
  53. # RDP from 10.0.10.104 into 10.0.10.130 which converts to 10.0.13.2
  54. sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 3389 -j DNAT --to 10.0.13.2:3389
  55.  
  56. sudo iptables -t nat -L -n --line-numbers
  57. sudo iptables —t nat -D PREROUTING 1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!