Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ~~~~~ FW ~~~~~
- inet: :2230 0800278304DE 172.16.30.30/16 enp0s8
- radagast: :2230 0800271CBB53 192.12.14.30/24 enp0s9
- ip link set dev enp0s8 down
- ip addr add 172.16.30.30/16 dev enp0s8
- ip link set dev enp0s8 up
- ip link set dev enp0s9 down
- ip addr add 192.12.14.30/24 dev enp0s9
- ip link set dev enp0s9 up
- echo 1 > /proc/sys/net/ipv4/ip_forward
- iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 192.12.14.40:8080
- iptables -t nat -A POSTROUTING -j MASQUERADE
- iptables -A INPUT -i enp0s8 -s 172.16.60.60 -p tcp --dport 1194 -j ACCEPT
- iptables -A FORWARD -s 172.16.60.60 -j DROP
- iptables -A FORWARD -p tcp --dport 8080 -d 192.12.14.40 -j ACCEPT
- iptables -A FORWARD -i enp0s8 -j DROP
- iptables -A INPUT -i enp0s8 -j DROP
- ~~~~~ WWW ~~~~~
- radagast :2240 080027EA2B51 192.12.14.40/24 enp0s8
- vim /etc/nginx/sites-enabled/default
- zmieniamy w
- listen 80 default_server;
- listen [::]:80 default_server;
- port 80 na 8080
- traktujemy systemctl restart nginx
- ip link set dev enp0s8 down
- ip addr add 192.12.14.40/24 dev enp0s8
- ip link set dev enp0s8 up
- iptables -I INPUT \! --src 192.12.14.30 -m tcp -p tcp --dport 8080 -j DROP
- iptables -I OUTPUT \! --dst 192.12.14.30 -m tcp -p tcp --dport 8080 -j DROP
- ~~~~~ WORK ~~~~~
- radagast :2250 08002731B136 192.12.14.50/24 enp0s8
- ip link set dev enp0s8 down
- ip addr add 192.12.14.50/24 dev enp0s8
- ip link set dev enp0s8 up
- ~~~~~ HOME ~~~~~
- inet: :2260 080027A54F62 172.16.60.60/16 enp0s8
- ip link set dev enp0s8 down
- ip addr add 172.16.60.60/16 dev enp0s8
- ip link set dev enp0s8 up
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
