FIREWALL COM IPTABLES - PARA INTERNET DISCADA E ADSL
Publicado por Joabes Carlos de Carvalho 18/09/2003
[ Hits: 10.975 ]
Homepage: http://www.fwsnet.com.br / http://www.bookmail.com.br
E AI GALERA, ESTOU DISPONIBILIZANDO PARA VCS UM NOVO SCRIPT DE FIREWALL ESSE É UM SCRIPT 2 EM 1, TANTO FAZ VOCÊ USAR PARA INTERNET DISCADA OU ADSL. BASTA APENAS VCS CUSTOMIZARAM CONFORME A NECESSIDADE DE CADA UM.
ABRAÇOS
######################################## FIREWALL 2 em 1 ############################################# ################################ APLICAÇÃO DE FIREWALL PARA ADSL OU DISCADA ########################## ###################################################################################################### ###################################################################################################### #!/bin/sh # echo -e "\n\nCarregando firewall...\n" EXTIF="ppp0" INTIF="eth1" echo " Interface Externa: $EXTIF" echo " Interface Interna: $INTIF" echo " habilitando forwarding..." echo "1" > /proc/sys/net/ipv4/ip_forward echo " habilitando enderecamento dinamico.." echo "1" > /proc/sys/net/ipv4/ip_dynaddr echo " apagando regras existentes e atualizando as regras padrao.." IPTABLES -P INPUT ACCEPT IPTABLES -F INPUT IPTABLES -P OUTPUT ACCEPT IPTABLES -F OUTPUT IPTABLES -P FORWARD DROP IPTABLES -F FORWARD IPTABLES -t nat -F echo " FWD: Permitir conexoes para fora e apenas existentes para dentro" IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT IPTABLES -A FORWARD -j LOG echo " Habilitando SNAT (MASQUERADE) em $EXTIF" $IPTABLES -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE ########################################################################################################### PROXIMO ITEN: Se voce não tem uma conexao discada pode usar o seguinte script de firewall para compartilhar sua conexão. ########################################################################################################### #!/bin/sh # echo -e "\n\nCarregando firewall...\n" EXTIF="eth0" {{{{{{{{OU A ETH QUE VC USA PRA EXTERNA (retire esse comentario)}}}}}}}} INTIF="eth1" echo " Interface Externa: $EXTIF" echo " Interface Interna: $INTIF" echo " habilitando forwarding..." echo "1" > /proc/sys/net/ipv4/ip_forward echo " apagando regras existentes e atualizando as regras padrao.." IPTABLES -P INPUT ACCEPT IPTABLES -F INPUT IPTABLES -P OUTPUT ACCEPT IPTABLES -F OUTPUT IPTABLES -P FORWARD DROP IPTABLES -F FORWARD IPTABLES -t nat -F echo " FWD: Permitir conexoes para fora e apenas existentes para dentro" IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT IPTABLES -A FORWARD -j LOG echo " Habilitando SNAT (MASQUERADE) em $EXTIF" #IPTABLES -t nat -A POSTROUTING -s sua_faixa_de_ip_interno -o eth0 -j SNAT --to seu_ip_externo IPTABLES -t nat -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j SNAT --to 200.20X.XXX.XXX ######################################################################################################### ################################# FIM DA MÁGICA #########################################################
Script para controle do Squid e firewall
Cadastro de usuarios para proxy autenticado
Monitorando o serviço do Squid utilizando como Proxy Transparente
Compilando o apache2.2 com php5 e mysql5.1 no slackware
Avisos de segurança do espaço em uso!
Nenhum comentário foi encontrado.
Desktop Linux ganha fôlego enquanto distros refinam experiência e segurança
Wayland em alta, IA em debate e novos ventos para distros e devices
Qt 6.10 e Python 3.14 puxam o ritmo do software livre nesta quarta
Atualizações de Apps, Desktop e Kernel agitam o ecossistema Linux nesta terça-feira
Como mudar o nome de dispositivos Bluetooth via linha de comando
Adicionando o repositório backports no Debian 13 Trixie