API tools faq
paste
Advertisement
nnsense

vpnbypass

nnsense
Apr 21st, 2018
131
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 13.24 KB | None | 0 0
raw download clone embed print report
  1. ####################################################################
  2.  
  3. root@OpenWrt:/etc/config# cat vpnbypass
  4.  
  5. config vpnbypass 'config'
  6.         list localport '32400'
  7.         list remotesubnet '25.0.0.0/8'
  8.         option enabled '1'
  9.  
  10. ####################################################################
  11.  
  12. root@OpenWrt:/etc/config# cat dhcp
  13.  
  14. config dnsmasq
  15.         option domainneeded '1'
  16.         option localise_queries '1'
  17.         option rebind_protection '1'
  18.         option rebind_localhost '1'
  19.         option local '/lan/'
  20.         option domain 'lan'
  21.         option expandhosts '1'
  22.         option authoritative '1'
  23.         option readethers '1'
  24.         option leasefile '/tmp/dhcp.leases'
  25.         option resolvfile '/tmp/resolv.conf.auto'
  26.         option nonwildcard '1'
  27.         option localservice '1'
  28.         list ipset '/wtfismyip.com/vpnbypass'
  29.         option serversfile '/tmp/adb_list.overall'
  30.         list rebind_domain 'plex.direct'
  31.         [...]
  32.  
  33. ####################################################################
  34.  
  35. root@OpenWrt:/etc/config# cat network
  36.  
  37. [...]
  38. config interface 'lan'
  39.         option type 'bridge'
  40.         option ifname 'eth0'
  41.         option proto 'static'
  42.         option netmask '255.255.255.0'
  43.         option ip6assign '60'
  44.         option ipaddr '192.168.0.1'
  45.         option dns '1.1.1.1 1.0.0.1'
  46. [...]
  47. config interface 'ovpn'
  48.         option proto 'none'
  49.         option ifname 'tun0'
  50.  
  51. ####################################################################
  52.  
  53. root@OpenWrt:/etc/config# iptables -L
  54.  
  55. Chain INPUT (policy ACCEPT)
  56. target     prot opt source               destination        
  57. ACCEPT     all  --  anywhere             anywhere             /* !fw3 */
  58. input_rule  all  --  anywhere             anywhere             /* !fw3: Custom input rule chain */
  59. ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED /* !fw3 */
  60. syn_flood  tcp  --  anywhere             anywhere             tcp flags:FIN,SYN,RST,ACK/SYN /* !fw3 */
  61. zone_lan_input  all  --  anywhere             anywhere             /* !fw3 */
  62. zone_wan_input  all  --  anywhere             anywhere             /* !fw3 */
  63. zone_wan_input  all  --  anywhere             anywhere             /* !fw3 */
  64.  
  65. Chain FORWARD (policy DROP)
  66. target     prot opt source               destination        
  67. forwarding_rule  all  --  anywhere             anywhere             /* !fw3: Custom forwarding rule chain */
  68. ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED /* !fw3 */
  69. zone_lan_forward  all  --  anywhere             anywhere             /* !fw3 */
  70. zone_wan_forward  all  --  anywhere             anywhere             /* !fw3 */
  71. zone_wan_forward  all  --  anywhere             anywhere             /* !fw3 */
  72. reject     all  --  anywhere             anywhere             /* !fw3 */
  73.  
  74. Chain OUTPUT (policy ACCEPT)
  75. target     prot opt source               destination        
  76. ACCEPT     all  --  anywhere             anywhere             /* !fw3 */
  77. output_rule  all  --  anywhere             anywhere             /* !fw3: Custom output rule chain */
  78. ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED /* !fw3 */
  79. zone_lan_output  all  --  anywhere             anywhere             /* !fw3 */
  80. zone_wan_output  all  --  anywhere             anywhere             /* !fw3 */
  81. zone_wan_output  all  --  anywhere             anywhere             /* !fw3 */
  82.  
  83. Chain forwarding_lan_rule (1 references)
  84. target     prot opt source               destination        
  85.  
  86. Chain forwarding_rule (1 references)
  87. target     prot opt source               destination        
  88.  
  89. Chain forwarding_wan_rule (1 references)
  90. target     prot opt source               destination        
  91.  
  92. Chain input_lan_rule (1 references)
  93. target     prot opt source               destination        
  94.  
  95. Chain input_rule (1 references)
  96. target     prot opt source               destination        
  97.  
  98. Chain input_wan_rule (1 references)
  99. target     prot opt source               destination        
  100.  
  101. Chain output_lan_rule (1 references)
  102. target     prot opt source               destination        
  103.  
  104. Chain output_rule (1 references)
  105. target     prot opt source               destination        
  106.  
  107. Chain output_wan_rule (1 references)
  108. target     prot opt source               destination        
  109.  
  110. Chain reject (5 references)
  111. target     prot opt source               destination        
  112. REJECT     tcp  --  anywhere             anywhere             /* !fw3 */ reject-with tcp-reset
  113. REJECT     all  --  anywhere             anywhere             /* !fw3 */ reject-with icmp-port-unreachable
  114.  
  115. Chain syn_flood (1 references)
  116. target     prot opt source               destination        
  117. RETURN     tcp  --  anywhere             anywhere             tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 25/sec burst 50 /* !fw3 */
  118. DROP       all  --  anywhere             anywhere             /* !fw3 */
  119.  
  120. Chain zone_lan_dest_ACCEPT (4 references)
  121. target     prot opt source               destination        
  122. ACCEPT     all  --  anywhere             anywhere             /* !fw3 */
  123.  
  124. Chain zone_lan_forward (1 references)
  125. target     prot opt source               destination        
  126. forwarding_lan_rule  all  --  anywhere             anywhere             /* !fw3: Custom lan forwarding rule chain */
  127. zone_wan_dest_ACCEPT  all  --  anywhere             anywhere             /* !fw3: Zone lan to wan forwarding policy */
  128. ACCEPT     all  --  anywhere             anywhere             ctstate DNAT /* !fw3: Accept port forwards */
  129. zone_lan_dest_ACCEPT  all  --  anywhere             anywhere             /* !fw3 */
  130.  
  131. Chain zone_lan_input (1 references)
  132. target     prot opt source               destination        
  133. input_lan_rule  all  --  anywhere             anywhere             /* !fw3: Custom lan input rule chain */
  134. ACCEPT     all  --  anywhere             anywhere             ctstate DNAT /* !fw3: Accept port redirections */
  135. zone_lan_src_ACCEPT  all  --  anywhere             anywhere             /* !fw3 */
  136.  
  137. Chain zone_lan_output (1 references)
  138. target     prot opt source               destination        
  139. output_lan_rule  all  --  anywhere             anywhere             /* !fw3: Custom lan output rule chain */
  140. zone_lan_dest_ACCEPT  all  --  anywhere             anywhere             /* !fw3 */
  141.  
  142. Chain zone_lan_src_ACCEPT (1 references)
  143. target     prot opt source               destination        
  144. ACCEPT     all  --  anywhere             anywhere             ctstate NEW,UNTRACKED /* !fw3 */
  145.  
  146. Chain zone_wan_dest_ACCEPT (2 references)
  147. target     prot opt source               destination        
  148. DROP       all  --  anywhere             anywhere             ctstate INVALID /* !fw3: Prevent NAT leakage */
  149. ACCEPT     all  --  anywhere             anywhere             /* !fw3 */
  150. DROP       all  --  anywhere             anywhere             ctstate INVALID /* !fw3: Prevent NAT leakage */
  151. ACCEPT     all  --  anywhere             anywhere             /* !fw3 */
  152.  
  153. Chain zone_wan_dest_REJECT (1 references)
  154. target     prot opt source               destination        
  155. reject     all  --  anywhere             anywhere             /* !fw3 */
  156. reject     all  --  anywhere             anywhere             /* !fw3 */
  157.  
  158. Chain zone_wan_forward (2 references)
  159. target     prot opt source               destination        
  160. forwarding_wan_rule  all  --  anywhere             anywhere             /* !fw3: Custom wan forwarding rule chain */
  161. zone_lan_dest_ACCEPT  esp  --  anywhere             anywhere             /* !fw3: Allow-IPSec-ESP */
  162. zone_lan_dest_ACCEPT  udp  --  anywhere             anywhere             udp dpt:isakmp /* !fw3: Allow-ISAKMP */
  163. ACCEPT     all  --  anywhere             anywhere             ctstate DNAT /* !fw3: Accept port forwards */
  164. zone_wan_dest_REJECT  all  --  anywhere             anywhere             /* !fw3 */
  165.  
  166. Chain zone_wan_input (2 references)
  167. target     prot opt source               destination        
  168. input_wan_rule  all  --  anywhere             anywhere             /* !fw3: Custom wan input rule chain */
  169. ACCEPT     udp  --  anywhere             anywhere             udp dpt:bootpc /* !fw3: Allow-DHCP-Renew */
  170. ACCEPT     icmp --  anywhere             anywhere             icmp echo-request /* !fw3: Allow-Ping */
  171. ACCEPT     igmp --  anywhere             anywhere             /* !fw3: Allow-IGMP */
  172. ACCEPT     all  --  anywhere             anywhere             ctstate DNAT /* !fw3: Accept port redirections */
  173. zone_wan_src_REJECT  all  --  anywhere             anywhere             /* !fw3 */
  174.  
  175. Chain zone_wan_output (2 references)
  176. target     prot opt source               destination        
  177. output_wan_rule  all  --  anywhere             anywhere             /* !fw3: Custom wan output rule chain */
  178. zone_wan_dest_ACCEPT  all  --  anywhere             anywhere             /* !fw3 */
  179.  
  180. Chain zone_wan_src_REJECT (1 references)
  181. target     prot opt source               destination        
  182. reject     all  --  anywhere             anywhere             /* !fw3 */
  183. reject     all  --  anywhere             anywhere             /* !fw3 */
  184.  
  185. ####################################################################
  186.  
  187. Installed Packages
  188.  
  189. adblock - 3.5.5-3
  190. ath10k-firmware-qca4019 - 2018-05-12-952afa49-1
  191. base-files - 194.2-r7676-cddd7b4c77
  192. bash - 4.4.18-2
  193. busybox - 1.28.4-3
  194. ddns-scripts - 2.7.8-1
  195. ddns-scripts_no-ip_com - 2.7.8-1
  196. dnsmasq-full - 2.80-1.4
  197. firewall - 2018-08-13-1c4d5bcd-1
  198. fstools - 2018-12-28-af93f4b8-3
  199. fwtool - 1
  200. hostapd-common - 2018-05-21-62566bc2-5
  201. ip6tables - 1.6.2-1
  202. ipset - 6.38-1
  203. iptables - 1.6.2-1
  204. iw - 4.14-1
  205. iwinfo - 2018-07-31-65b8333f-1
  206. jshn - 2018-07-25-c83a84af-2
  207. jsonfilter - 2018-02-04-c7e938d6-1
  208. kernel - 4.14.95-1-3e42ea4c9976fef2dddc0dc55922a58a
  209. kmod-ath - 4.14.95+2017-11-01-9
  210. kmod-ath10k - 4.14.95+2017-11-01-9
  211. kmod-cfg80211 - 4.14.95+2017-11-01-9
  212. kmod-gpio-button-hotplug - 4.14.95-2
  213. kmod-ip6tables - 4.14.95-1
  214. kmod-ipt-conntrack - 4.14.95-1
  215. kmod-ipt-core - 4.14.95-1
  216. kmod-ipt-ipset - 4.14.95-1
  217. kmod-ipt-nat - 4.14.95-1
  218. kmod-ipt-offload - 4.14.95-1
  219. kmod-leds-gpio - 4.14.95-1
  220. kmod-lib-crc-ccitt - 4.14.95-1
  221. kmod-mac80211 - 4.14.95+2017-11-01-9
  222. kmod-nf-conntrack - 4.14.95-1
  223. kmod-nf-conntrack-netlink - 4.14.95-1
  224. kmod-nf-conntrack6 - 4.14.95-1
  225. kmod-nf-flow - 4.14.95-1
  226. kmod-nf-ipt - 4.14.95-1
  227. kmod-nf-ipt6 - 4.14.95-1
  228. kmod-nf-nat - 4.14.95-1
  229. kmod-nf-reject - 4.14.95-1
  230. kmod-nf-reject6 - 4.14.95-1
  231. kmod-nfnetlink - 4.14.95-1
  232. kmod-nls-base - 4.14.95-1
  233. kmod-ppp - 4.14.95-1
  234. kmod-pppoe - 4.14.95-1
  235. kmod-pppox - 4.14.95-1
  236. kmod-slhc - 4.14.95-1
  237. kmod-tun - 4.14.95-1
  238. kmod-usb-core - 4.14.95-1
  239. kmod-usb-dwc3 - 4.14.95-1
  240. kmod-usb-dwc3-of-simple - 4.14.95-1
  241. kmod-usb-phy-qcom-dwc3 - 4.14.95-1
  242. kmod-usb3 - 4.14.95-1
  243. libblobmsg-json - 2018-07-25-c83a84af-2
  244. libc - 1.1.19-1
  245. libgcc - 7.3.0-1
  246. libgmp - 6.1.2-1
  247. libip4tc - 1.6.2-1
  248. libip6tc - 1.6.2-1
  249. libipset - 6.38-1
  250. libiwinfo - 2018-07-31-65b8333f-1
  251. libiwinfo-lua - 2018-07-31-65b8333f-1
  252. libjson-c - 0.12.1-2
  253. libjson-script - 2018-07-25-c83a84af-2
  254. liblua - 5.1.5-1
  255. liblucihttp - 2019-06-05-91c01c3c-1
  256. liblucihttp-lua - 2019-06-05-91c01c3c-1
  257. liblzo - 2.10-1
  258. libmbedtls - 2.16.1-1
  259. libmnl - 1.0.4-1
  260. libncurses - 6.1-1
  261. libnetfilter-conntrack - 2017-07-25-e8704326-1
  262. libnettle - 3.4-1
  263. libnfnetlink - 1.0.1-1
  264. libnl-tiny - 0.1-5
  265. libopenssl - 1.0.2s-1
  266. libpcap - 1.8.1-1
  267. libpcre - 8.41-2
  268. libpopt - 1.16-1
  269. libpopt - 1.16-1
  270. libpthread - 1.1.19-1
  271. libreadline - 7.0-1
  272. libstdcpp - 7.3.0-1
  273. libubox - 2018-07-25-c83a84af-2
  274. libubus - 2018-10-06-221ce7e7-1
  275. libubus-lua - 2018-10-06-221ce7e7-1
  276. libuci - 2019-05-17-f199b961-1
  277. libuclient - 2018-11-24-3ba74ebc-1
  278. libustream-mbedtls - 2018-07-30-23a3f283-1
  279. libxtables - 1.6.2-1
  280. logd - 2018-02-14-128bc35f-2
  281. lua - 5.1.5-1
  282. luci - git-19.156.63894-115c4e3-1
  283. luci-app-adblock - git-19.156.63894-115c4e3-1
  284. luci-app-ddns - 2.4.9-3
  285. luci-app-firewall - git-19.156.63894-115c4e3-1
  286. luci-app-openvpn - git-19.156.63894-115c4e3-1
  287. luci-app-vpnbypass - git-19.156.63894-115c4e3-4
  288. luci-base - git-19.156.63894-115c4e3-1
  289. luci-lib-ip - git-19.156.63894-115c4e3-1
  290. luci-lib-jsonc - git-19.156.63894-115c4e3-1
  291. luci-lib-nixio - git-19.156.63894-115c4e3-1
  292. luci-mod-admin-full - git-19.156.63894-115c4e3-1
  293. luci-proto-ipv6 - git-19.156.63894-115c4e3-1
  294. luci-proto-ppp - git-19.156.63894-115c4e3-1
  295. luci-theme-bootstrap - git-19.156.63894-115c4e3-1
  296. mtd - 23
  297. netifd - 2019-01-31-a2aba5c7-2.1
  298. nmap - 7.70-1
  299. odhcp6c - 2018-07-14-67ae6a71-15
  300. odhcpd-ipv6only - 1.15-3
  301. openssh-client - 7.7p1-1
  302. openssh-client-utils - 7.7p1-1
  303. openssh-keygen - 7.7p1-1
  304. openssh-server - 7.7p1-1
  305. openssh-sftp-server - 7.7p1-1
  306. openssl-util - 1.0.2s-1
  307. openvpn-easy-rsa - 3.0.4-1
  308. openvpn-openssl - 2.4.5-4.2
  309. openwrt-keyring - 2018-05-18-103a32e9-1
  310. opkg - 2019-01-18-7708a01a-1
  311. ppp - 2.4.7-12
  312. ppp-mod-pppoe - 2.4.7-12
  313. procd - 2018-03-28-dfb68f85-1
  314. rpcd - 2018-11-28-3aa81d0d-2
  315. rpcd-mod-rrdns - 20170710
  316. rsync - 3.1.3-1
  317. swconfig - 11
  318. tcpdump - 4.9.2-1
  319. terminfo - 6.1-1
  320. ubi-utils - 2.0.2-1
  321. ubox - 2018-02-14-128bc35f-2
  322. ubus - 2018-10-06-221ce7e7-1
  323. ubusd - 2018-10-06-221ce7e7-1
  324. uci - 2019-05-17-f199b961-1
  325. uclient-fetch - 2018-11-24-3ba74ebc-1
  326. uhttpd - 2018-11-28-cdfc902a-3
  327. usign - 2015-07-04-ef641914-1
  328. vim - 8.0.586-2
  329. vpnbypass - 1.3.1-1
  330. wireless-regdb - 2017-10-20-4343d359
  331. wpad-mini - 2018-05-21-62566bc2-5
  332. zlib - 1.2.11-2
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!