ar
/
old-firewall
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

amanojaku is gone

master
Robert "ar" Gerus 2013-05-03 10:01:21 +02:00
parent 3d4e192764
commit 3bb4b351bb
2 changed files with 16 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
rules/10-ar-amanojaku
View File

@ -1,14 +1,16 @@
#!/bin/bash
rules() {
# tcp
for port in 22 80 443 14528:14530 20000; do
iptables -t nat $flag PREROUTING -i ${IF_WAN} -d ${HOST_KASHA_WAN} -p tcp --dport ${port} -j DNAT --to-destination ${HOST_AMANOJAKU}
iptables -t filter $flag FORWARD -i ${IF_WAN} -d ${HOST_AMANOJAKU} -p tcp --dport ${port} -j ACCEPT
done
# udp
for port in 60000:60100; do
iptables -t nat $flag PREROUTING -i ${IF_WAN} -d ${HOST_KASHA_WAN} -m udp -p udp --dport ${port} -j DNAT --to-destination ${HOST_AMANOJAKU}
iptables -t filter $flag FORWARD -i ${IF_WAN} -d ${HOST_AMANOJAKU} -m udp -p udp --dport ${port} -j ACCEPT
done
:
# nope, the host is not here.
# # tcp
# for port in 22 80 443 14528:14530 20000; do
# iptables -t nat $flag PREROUTING -i ${IF_WAN} -d ${HOST_KASHA_WAN} -p tcp --dport ${port} -j DNAT --to-destination ${HOST_AMANOJAKU}
# iptables -t filter $flag FORWARD -i ${IF_WAN} -d ${HOST_AMANOJAKU} -p tcp --dport ${port} -j ACCEPT
# done
#
# # udp
# for port in 60000:60100; do
# iptables -t nat $flag PREROUTING -i ${IF_WAN} -d ${HOST_KASHA_WAN} -m udp -p udp --dport ${port} -j DNAT --to-destination ${HOST_AMANOJAKU}
# iptables -t filter $flag FORWARD -i ${IF_WAN} -d ${HOST_AMANOJAKU} -m udp -p udp --dport ${port} -j ACCEPT
# done
}

3
tests/01-ssh_test_via_NAS.sh
View File

@ -1,5 +1,8 @@
#!/bin/sh
# the host is not here
exit 0
set -o errexit
set -o pipefail
set -o nounset