FIREWALL COM IPTABLES - PARA INTERNET DISCADA E ADSL
Publicado por Joabes Carlos de Carvalho 18/09/2003
[ Hits: 10.968 ]
Homepage: http://www.fwsnet.com.br / http://www.bookmail.com.br
E AI GALERA, ESTOU DISPONIBILIZANDO PARA VCS UM NOVO SCRIPT DE FIREWALL ESSE É UM SCRIPT 2 EM 1, TANTO FAZ VOCÊ USAR PARA INTERNET DISCADA OU ADSL. BASTA APENAS VCS CUSTOMIZARAM CONFORME A NECESSIDADE DE CADA UM.
ABRAÇOS
######################################## FIREWALL 2 em 1 ############################################# ################################ APLICAÇÃO DE FIREWALL PARA ADSL OU DISCADA ########################## ###################################################################################################### ###################################################################################################### #!/bin/sh # echo -e "\n\nCarregando firewall...\n" EXTIF="ppp0" INTIF="eth1" echo " Interface Externa: $EXTIF" echo " Interface Interna: $INTIF" echo " habilitando forwarding..." echo "1" > /proc/sys/net/ipv4/ip_forward echo " habilitando enderecamento dinamico.." echo "1" > /proc/sys/net/ipv4/ip_dynaddr echo " apagando regras existentes e atualizando as regras padrao.." IPTABLES -P INPUT ACCEPT IPTABLES -F INPUT IPTABLES -P OUTPUT ACCEPT IPTABLES -F OUTPUT IPTABLES -P FORWARD DROP IPTABLES -F FORWARD IPTABLES -t nat -F echo " FWD: Permitir conexoes para fora e apenas existentes para dentro" IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT IPTABLES -A FORWARD -j LOG echo " Habilitando SNAT (MASQUERADE) em $EXTIF" $IPTABLES -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE ########################################################################################################### PROXIMO ITEN: Se voce não tem uma conexao discada pode usar o seguinte script de firewall para compartilhar sua conexão. ########################################################################################################### #!/bin/sh # echo -e "\n\nCarregando firewall...\n" EXTIF="eth0" {{{{{{{{OU A ETH QUE VC USA PRA EXTERNA (retire esse comentario)}}}}}}}} INTIF="eth1" echo " Interface Externa: $EXTIF" echo " Interface Interna: $INTIF" echo " habilitando forwarding..." echo "1" > /proc/sys/net/ipv4/ip_forward echo " apagando regras existentes e atualizando as regras padrao.." IPTABLES -P INPUT ACCEPT IPTABLES -F INPUT IPTABLES -P OUTPUT ACCEPT IPTABLES -F OUTPUT IPTABLES -P FORWARD DROP IPTABLES -F FORWARD IPTABLES -t nat -F echo " FWD: Permitir conexoes para fora e apenas existentes para dentro" IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT IPTABLES -A FORWARD -j LOG echo " Habilitando SNAT (MASQUERADE) em $EXTIF" #IPTABLES -t nat -A POSTROUTING -s sua_faixa_de_ip_interno -o eth0 -j SNAT --to seu_ip_externo IPTABLES -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j SNAT --to 200.20X.XXX.XXX ######################################################################################################### ################################# FIM DA MÁGICA #########################################################
Verifica quais ports necessitam de atualização
Nenhum comentário foi encontrado.
Atualizações de Apps, Desktop e Kernel agitam o ecossistema Linux nesta terça-feira
Miyoo Mini Plus + Onion OS (Linux)
IA local no bolso, novo visual no Raspberry Pi OS e mais destaques do software livre
Kernel turbinado, compatibilidade em alta e debate sobre sustentabilidade: o dia no mundo Linux
Kernel turbinado e GNOME 49 dominam o giro do dia no mundo Linux
Adicionando o repositório backports no Debian 13 Trixie
Como definir um IP estático no Linux Debian
Como colocar atalho para uma pasta na área de trabalho do Ubuntu 24.04... (1)
Como listar os arquivos em "bloquin... (0)
Como vencer a procrastinação? (8)
Adicional de convivdado em linux somente linha de comando (3)