Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #! /bin/bash
- #question 1.1.2
- iptables -F
- #question 1.1.3
- iptables -t filter -P INPUT DROP
- iptables -t filter -P OUTPUT DROP
- iptables -t filter -P FORWARD DROP
- #question 1.1.4
- iptables -t filter -A FORWARD --in-interface eth0 --protocol ICMP --jump REJECT
- iptables -t filter -A FORWARD --in-interface eth1 --protocol ICMP --jump REJECT
- #question 1.1.5
- iptables -t filter -A INPUT --jump LOG --log-prefix local
- iptables -t filter -A FORWARD --jump LOG --log-prefix routage
- #question 1.2.1
- iptables -t filter -A OUTPUT --protocol udp --destination-port 53 --jump ACCEPT
- iptables -t filter -A INPUT --protocol udp --destination-port 53 --jump ACCEPT
- #question 1.2.2
- iptables -t filter -A OUTPUT --protocol udp --destination-port 80 --jump ACCEPT
- iptables -t filter -A INPUT --protocol udp --destination-port 80 --jump ACCEPT
- #question 1.3.1
- iptables -t filter -A FORWARD --protocol udp --destination-port 53 --source 192.168.1.1/24 --jump ACCEPT
- iptables -t filter -A FORWARD --protocol udp --source-port 53 --destination 192.168.1.1/24 --jump ACCEPT
- #question 1.3.2
- iptables -t filter -A FORWARD --protocol tcp --destination-port 80 --source 192.168.1.1/24 --jump ACCEPT
- iptables -t filter -A FORWARD --protocol tcp --source-port 80 --destination 192.168.1.1/24 --jump ACCEPT
- #question 1.4.1
- iptables -t filter -A FORWARD --protocol udp --destination-port 53 --source 172.18.1.1/24 --jump ACCEPT
- iptables -t filter -A FORWARD --protocol udp --source-port 53 --destination 172.18.1.1/24 --jump ACCEPT
- #question 1.4.4
- iptables -t filter -A FORWARD --protocol udp --destination-port 53 --in-interface eth0 --jump ACCEPT
- iptables -t filter -A FORWARD --protocol udp --source-port 53 --in-interface eth0 --jump ACCEPT
- #question 1.4.6
- iptables -t filter -A FORWARD --protocol tcp --destination-port 80 --source 172.18.1.1/24 --jump ACCEPT
- iptables -t filter -A FORWARD --protocol tcp --source-port 80 --destination 172.18.1.1/24 --jump ACCEPT
- #question 1.4.7
- #ne fonctionne pas mort de rire
- iptables -t filter -A FORWARD --protocol tcp --destination-port 16385 --in-interface eth0 --jump ACCEPT
- iptables -t filter -A FORWARD --protocol tcp --source-port 16385 --in-interface eth0 --jump ACCEPT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement