Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/bin/bash
- #chkconfig: 3 10 90
- #description lab5_MitrofanovDA_script
- . /etc/init.d/functions
- . /etc/sysconfig/network
- if [ ! -f /etc/sysconfig/network ]; then
- exit 0
- fi
- if [ -f /etc/sysconfig/network-scripts/ifcfg-eth1 ]; then
- . /etc/sysconfig/network-scripts/ifcfg-eth1
- fi
- [ "${NETWORKING}" = "no" ] && exit 0
- [ -x /sbin/ifconfig ] || exit 1
- case "$1" in
- start)
- echo "Активируем eth1"
- ifconfig eth1 ${IPADDR} netmask ${NETMASK} up
- echo "Включаем маршрутизацию, обновляем iptables"
- echo 1 > /proc/sys/net/ipv4/ip_forward
- iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
- iptables -A INPUT -i eth1 -p TCP -s 0.0.0.0 --sport 22 -j DROP
- sleep 0.5
- ifconfig eth1 | grep UP > /dev/null
- if [ $? = 0 ]
- then echo -e "\e[1;32mOK\e[0m"
- else echo -e "\e[1;31mОшибка: интерфейс не активирован\e[0m"
- fi
- ;;
- stop)
- echo "Деактивация eth1, отключаем маршрутизацию"
- ifconfig eth1 ${IPADDR} netmask ${NETMASK} down
- echo 0 > /proc/sys/net/ipv4/ip_forward
- echo "Очищаем iptables"
- iptables -F
- ifconfig eth1 | grep UP > /dev/null
- if [ ! $? = 0 ]
- then echo -e "\e[1;32mOK\e[0m"
- else echo -e "\e[1;31mОшибка: интерфейс не активирован\e[0m"
- fi
- ;;
- status)
- iptables -L -n
- echo "--------"
- ifconfig
- echo "--------"
- route -n
- cat /proc/sys/net/ipv4/ip_forward
- echo "--------"
- ;;
- esac
- exit 0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
