All pastes #78829 Raw Edit

Something

public text v1 · immutable
#78829 ·published 2006-07-04 16:34 UTC
rendered paste body
Network setup: WAN: eth1, LAN: eth0, 192.168.57.1

trix ~ # iptables-save -c
# Generated by iptables-save v1.3.5 on Tue Jul  4 11:34:03 2006
*raw
:PREROUTING ACCEPT [203839:114060217]
:OUTPUT ACCEPT [142220:27208405]
COMMIT
# Completed on Tue Jul  4 11:34:03 2006
# Generated by iptables-save v1.3.5 on Tue Jul  4 11:34:03 2006
*nat
:PREROUTING ACCEPT [4109:1144843]
:POSTROUTING ACCEPT [11933:540236]
:OUTPUT ACCEPT [13049:625530]
[9:528] -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.57.2
[0:0] -A PREROUTING -i eth1 -p tcp -m tcp --dport 5801 -j DNAT --to-destination 192.168.57.2
[3:144] -A PREROUTING -i eth1 -p tcp -m tcp --dport 5901 -j DNAT --to-destination 192.168.57.2
[0:0] -A PREROUTING -i eth1 -p tcp -m tcp --dport 81 -j DNAT --to-destination 192.168.57.5
[0:0] -A PREROUTING -i eth1 -p tcp -m tcp --dport 3724 -j DNAT --to-destination 192.168.57.5
[0:0] -A PREROUTING -i eth1 -p tcp -m tcp --dport 6112 -j DNAT --to-destination 192.168.57.5
[0:0] -A PREROUTING -i eth1 -p tcp -m tcp --dport 27015:27039 -j DNAT --to-destination 192.168.57.5
[1965:125952] -A POSTROUTING -o eth1 -j MASQUERADE
COMMIT
# Completed on Tue Jul  4 11:34:03 2006
# Generated by iptables-save v1.3.5 on Tue Jul  4 11:34:03 2006
*mangle
:PREROUTING ACCEPT [203853:114061297]
:INPUT ACCEPT [146056:71723789]
:FORWARD ACCEPT [57787:42336551]
:OUTPUT ACCEPT [142231:27210505]
:POSTROUTING ACCEPT [200627:69720283]
COMMIT
# Completed on Tue Jul  4 11:34:03 2006
# Generated by iptables-save v1.3.5 on Tue Jul  4 11:34:03 2006
*filter
:INPUT ACCEPT [39523:55701849]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [106969:24549275]
[16949:728636] -A INPUT -i lo -j ACCEPT
[57183:6960719] -A INPUT -i eth0 -j ACCEPT
[0:0] -A INPUT -i ! eth0 -p udp -m udp --dport 67 -j REJECT --reject-with icmp-port-unreachable
[0:0] -A INPUT -i ! eth0 -p udp -m udp --dport 53 -j REJECT --reject-with icmp-port-unreachable
[0:0] -A FORWARD -d 192.168.0.0/255.255.0.0 -i eth0 -j DROP
[22865:2208536] -A FORWARD -s 192.168.0.0/255.255.0.0 -i eth0 -j ACCEPT
[33455:39439938] -A FORWARD -d 192.168.0.0/255.255.0.0 -i eth1 -j ACCEPT
COMMIT
# Completed on Tue Jul  4 11:34:03 2006