API tools faq
paste
Guest User

not working iptables

a guest
Mar 18th, 2019
263
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.62 KB | None | 0 0
raw download clone embed print report
  1. -P INPUT DROP
  2. -P FORWARD DROP
  3. -P OUTPUT ACCEPT
  4. -A INPUT -m state --state INVALID -j DROP
  5. -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
  6. -A INPUT -i lo -j ACCEPT
  7. -A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
  8. -A INPUT -i venet0 -p tcp -m tcp --dport 655 -j ACCEPT
  9. -A INPUT -i venet0 -p udp -m udp --dport 655 -j ACCEPT
  10. -A INPUT -i venet0 -p esp -j ACCEPT
  11. -A INPUT -i venet0 -p ah -j ACCEPT
  12. -A INPUT -s $VPN_NETWORK -p tcp -m tcp --dport 22 -j ACCEPT
  13. -A INPUT -s $VPN_NETWORK -i tun0 -p udp -m udp --dport 53 -j ACCEPT
  14. -A INPUT -s $VPN_NETWORK -i tun0 -p udp -m udp --dport 853 -j ACCEPT
  15. -A INPUT -s $VPN_NETWORK -i tun0 -p tcp -m tcp --dport 53 -j ACCEPT
  16. -A INPUT -s $VPN_NETWORK -i tun0 -p tcp -m tcp --dport 853 -j ACCEPT
  17. -A INPUT -s $VPN_NETWORK -i tun0 -p tcp -m tcp --dport 25 -j ACCEPT
  18. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6112 -j ACCEPT
  19. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6112 -j ACCEPT
  20. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6113 -j ACCEPT
  21. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6113 -j ACCEPT
  22. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6114 -j ACCEPT
  23. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6114 -j ACCEPT
  24. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6115 -j ACCEPT
  25. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6115 -j ACCEPT
  26. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6116 -j ACCEPT
  27. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6116 -j ACCEPT
  28. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6117 -j ACCEPT
  29. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6117 -j ACCEPT
  30. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6118 -j ACCEPT
  31. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6118 -j ACCEPT
  32. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p tcp -m tcp --dport 6119 -j ACCEPT
  33. -A FORWARD -d $WIN10_VPN_ADDRESS -i venet0 -o tun0 -p udp -m udp --dport 6119 -j ACCEPT
  34. -A FORWARD -m state --state INVALID -j DROP
  35. -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
  36. -A FORWARD -i tun0 -j ACCEPT
  37. -A OUTPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
  38. -P PREROUTING ACCEPT
  39. -P POSTROUTING ACCEPT
  40. -P OUTPUT ACCEPT
  41. -A PREROUTING -p tcp -m tcp --dport 6112 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  42. -A PREROUTING -p udp -m udp --dport 6112 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  43. -A PREROUTING -p tcp -m tcp --dport 6113 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  44. -A PREROUTING -p udp -m udp --dport 6113 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  45. -A PREROUTING -p tcp -m tcp --dport 6114 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  46. -A PREROUTING -p udp -m udp --dport 6114 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  47. -A PREROUTING -p tcp -m tcp --dport 6115 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  48. -A PREROUTING -p udp -m udp --dport 6115 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  49. -A PREROUTING -p tcp -m tcp --dport 6116 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  50. -A PREROUTING -p udp -m udp --dport 6116 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  51. -A PREROUTING -p tcp -m tcp --dport 6117 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  52. -A PREROUTING -p udp -m udp --dport 6117 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  53. -A PREROUTING -p tcp -m tcp --dport 6118 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  54. -A PREROUTING -p udp -m udp --dport 6118 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  55. -A PREROUTING -p tcp -m tcp --dport 6119 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  56. -A PREROUTING -p udp -m udp --dport 6119 -j DNAT --to-destination $WIN10_VPN_ADDRESS
  57. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6112 -j SNAT --to-source $INET_ADDRESS:6112
  58. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6112 -j SNAT --to-source $INET_ADDRESS:6112
  59. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6113 -j SNAT --to-source $INET_ADDRESS:6113
  60. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6113 -j SNAT --to-source $INET_ADDRESS:6113
  61. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6114 -j SNAT --to-source $INET_ADDRESS:6114
  62. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6114 -j SNAT --to-source $INET_ADDRESS:6114
  63. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6115 -j SNAT --to-source $INET_ADDRESS:6115
  64. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6115 -j SNAT --to-source $INET_ADDRESS:6115
  65. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6116 -j SNAT --to-source $INET_ADDRESS:6116
  66. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6116 -j SNAT --to-source $INET_ADDRESS:6116
  67. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6117 -j SNAT --to-source $INET_ADDRESS:6117
  68. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6117 -j SNAT --to-source $INET_ADDRESS:6117
  69. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6118 -j SNAT --to-source $INET_ADDRESS:6118
  70. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6118 -j SNAT --to-source $INET_ADDRESS:6118
  71. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p tcp -m tcp --sport 6119 -j SNAT --to-source $INET_ADDRESS:6119
  72. -A POSTROUTING -s $WIN10_VPN_ADDRESS -o venet0 -p udp -m udp --sport 6119 -j SNAT --to-source $INET_ADDRESS:6119
  73. -A POSTROUTING -s $VPN_NETWORK -o venet0 -j MASQUERADE
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!