2013-03-12 09:07:06 +00:00
|
|
|
#!/bin/bash
|
2013-03-11 11:25:55 +00:00
|
|
|
rules() {
|
2013-05-03 08:01:21 +00:00
|
|
|
:
|
|
|
|
# nope, the host is not here.
|
|
|
|
# # tcp
|
|
|
|
# for port in 22 80 443 14528:14530 20000; do
|
|
|
|
# iptables -t nat $flag PREROUTING -i ${IF_WAN} -d ${HOST_KASHA_WAN} -p tcp --dport ${port} -j DNAT --to-destination ${HOST_AMANOJAKU}
|
|
|
|
# iptables -t filter $flag FORWARD -i ${IF_WAN} -d ${HOST_AMANOJAKU} -p tcp --dport ${port} -j ACCEPT
|
|
|
|
# done
|
|
|
|
#
|
|
|
|
# # udp
|
|
|
|
# for port in 60000:60100; do
|
|
|
|
# iptables -t nat $flag PREROUTING -i ${IF_WAN} -d ${HOST_KASHA_WAN} -m udp -p udp --dport ${port} -j DNAT --to-destination ${HOST_AMANOJAKU}
|
|
|
|
# iptables -t filter $flag FORWARD -i ${IF_WAN} -d ${HOST_AMANOJAKU} -m udp -p udp --dport ${port} -j ACCEPT
|
|
|
|
# done
|
2013-03-11 11:25:55 +00:00
|
|
|
}
|