[ SlackList ] [ WkikiSlack ]


porty

From: adkom <adkom@mpnet.pl>
Date: Thu Feb 20 2003 - 15:27:02 CET
[slacklist] porty

#!/bin/bash

#ppp0=IP

#eth0=192.168.2.1

ipchains -F input

ipchains -F output

ipchains -F forward

ipchains -P input ACCEPT

ipchains -P output ACCEPT

ipchains -P forward DENY

ipchains -A input -p tcp -s 0/0 1024:65535 -d IP = 1:65535 -j DENY -i ppp0

#FTP-DATA

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 20 -j = ACCEPT -i ppp0

#FTP

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 21 -j = ACCEPT -i ppp0

#SSH

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 22 -j = ACCEPT -i ppp0

#SMTP-MAIL

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 25 -j = ACCEPT -i ppp0

#NAMESERVER

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 53 -j = ACCEPT -i ppp0

#HTTP

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 80 -j = ACCEPT -i ppp0

#POP3-MAIL

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 110 = -j ACCEPT -i ppp0

#AUTH

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 113 = -j ACCEPT -i ppp0

#IRC

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 6667 = -j ACCEPT -i ppp0

#FTP-TRANSFERING

#ipchains -I input -p tcp -s 0/0 1024:65535 -d IP = 1024:6000 -j ACCEPT -i ppp0

#TELNET

ipchains -I input -p tcp -s 0/0 1024:65535 -d IP 23 -j = DENY -i ppp0

#FORWADING

ifconfig eth0 192.168.2.1

echo "Starting FORWARDING IPv.4"

ipchains -A forward -i ppp0 -j MASQ -s 192.168.2.0/24 = -d 0.0.0.0/0

echo 1 > /proc/sys/net/ipv4/ip_forward



Dlaczego wszystko dziala named www ssh a irc nie ? co = wy na to ?




Received on Sat Feb 21 03:37:43 2004
This archive was generated by hypermail 2.1.8. Wyprawa Shackleton 2014