Public Pastes
daily pastebin goal
54%
SHARE
TWEET

Untitled

a guest Mar 26th, 2015 205 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. /sbin/iptables -P INPUT DROP
  2. /sbin/iptables -A INPUT -i lo -j ACCEPT
  3. /sbin/iptables -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  4. /sbin/iptables -A INPUT -i eth0 -s 192.168.1.0/24 -j ACCEPT
  5. /sbin/iptables -A INPUT -i eth0 -s 192.168.10.0/24 -j ACCEPT
  6. /sbin/iptables -A OUTPUT -o eth0 -d 192.168.1.0/24 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  7. /sbin/iptables -A OUTPUT -o eth0 -d 192.168.10.0/24 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  8. /sbin/iptables -A OUTPUT -o eth0 -d 192.168.1.0/24 -p udp --sport 68 --dport 67 -j ACCEPT
  9. /bin/grep -h '^remote ' /etc/openvpn/*.conf | /usr/bin/cut -d ' ' -f 2 | /usr/bin/sort -du | /usr/bin/xargs -I @ /sbin/iptables -A OUTPUT -d @ -j ACCEPT
  10. /sbin/iptables -A OUTPUT -o eth0 -j REJECT
RAW Paste Data
Top