Iptables -A FORWARD -i $VLAN.102 -o $VLAN.105 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $VLAN.102 -o $VLAN.104 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.109 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.108 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.107 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.106 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.105 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.104 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $VLAN.102 -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -i $INTERNET -o $LOCAL -m state -state ESTABLISHED,RELATED -j ACCEPT Iptables -A FORWARD -in-interface $INTERNET -j ACCEPT Iptables -t nat -A POSTROUTING -out-interface $INTERNET -j MASQUERADE Iptables -A INPUT -p tcp -m tcpmss -mss 1:500 -j DROP Iptables -A INPUT ! -i lo -d 127.0.0.0/8 -j REJECT Echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcastsĮcho 0 > /proc/sys/net/ipv4/conf/all/accept_source_routeĮcho 1 > /proc/sys/net/ipv4/tcp_syncookiesĮcho 0 > /proc/sys/net/ipv4/conf/all/accept_redirectsĮcho 0 > /proc/sys/net/ipv4/conf/all/send_redirectsĮcho 1 > /proc/sys/net/ipv4/conf/all/rp_filterĮcho 1 > /proc/sys/net/ipv4/conf/all/log_martians
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |