Guest User

Untitled

a guest
Dec 3rd, 2019
158
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. -A FORWARD -s 10.10.10.0/24 -m policy --dir in --pol ipsec --proto esp -m comment --comment "VPN forwarding" -j ACCEPT
  2. -A FORWARD -d 10.10.10.0/24 -m policy --dir out --pol ipsec --proto esp -m comment --comment "VPN forwarding" -j ACCEPT
  3.  
  4. ...
  5. *nat
  6. :POSTROUTING ACCEPT [0:0]
  7. -A POSTROUTING -s 10.10.10.0/24 -o eth0 -m policy --dir out --pol ipsec -j ACCEPT
  8. -A POSTROUTING -s 10.10.10.0/24 -o eth0 -j MASQUERADE
  9.  
  10. ...
  11. *mangle
  12. :POSTROUTING ACCEPT [30:1812]
  13. -A FORWARD -s 10.10.10.0/24 -o eth0 -p tcp -m policy --dir in --pol ipsec -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1361:1536 -j TCPMSS --set-mss 1360
  14. -A FORWARD -s 10.10.10.0/24 -o eth0 -p tcp -m policy --dir in --pol ipsec -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1361:1536 -j TCPMSS --set-mss 1360
RAW Paste Data