Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- killall dhclient
- dhclient eth0
- ifconfig eth1 192.168.2.1 netmask 255.255.255.0 up
- echo czyszczenie
- iptables -F
- iptables -F -t nat
- iptables -X -t nat
- iptables -F -t filter
- iptables -X -t filter
- echo "ustawianie FW"
- iptables -P FORWARD DROP
- iptables -P INPUT DROP
- iptables -P OUTPUT ACCEPT
- iptables -A INPUT -i lo -j ACCEPT
- iptables -A INPUT -i eth1 -j ACCEPT
- iptables -A INPUT -i eth0 -s 192.168.56.101 -j DROP
- iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
- #przekazywanie polaczen na interfejsie wewnetrznym
- iptables -A FORWARD -i eth1 -o eth1 -j ACCEPT
- echo "ustawianie NAT"
- echo "1" > /proc/sys/net/ipv4/ip_forward
- iptables -A FORWARD -i eth1 -o eth0 -s 192.168.2.0/24 -d 0/0 -j ACCEPT
- iptables -A FORWARD -i eth0 -o eth1 -s 0/0 -d 192.168.2.0/24 -j ACCEPT
- iptables -t nat -A POSTROUTING -s 192.168.2.0/24 -d 0/0 -j MASQUERADE
- echo "ustawianie port redirect"
- iptables -A PREROUTING -t nat -i eth0 -p tcp -d 192.168.56.101 --dport 1234 -j DNAT --to-destination 192.168.2.2:22
- iptables -A PREROUTING -t nat -i eth1 -p tcp -d 192.168.56.101 --dport 1234 -j DNAT --to-destination 192.168.2.2:22
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
