API tools faq
paste
Advertisement
teknoraver

home firewall

teknoraver
Feb 20th, 2015
295
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.00 KB | None | 0 0
raw download clone embed print report
  1. *nat
  2. :PREROUTING ACCEPT [0:0]
  3. :INPUT ACCEPT [0:0]
  4. :OUTPUT ACCEPT [0:0]
  5. :POSTROUTING ACCEPT [0:0]
  6. -A PREROUTING -i pppoe-wan -p tcp -m multiport --dports 80,42000 -j DNAT --to-destination 192.168.1.20
  7. -A PREROUTING -i pppoe-wan -p udp -m udp --dport 42000 -j DNAT --to-destination 192.168.1.20
  8. -A PREROUTING -i pppoe-wan -p tcp -m multiport --dports 43000:43010 -j DNAT --to-destination 192.168.1.25
  9. -A PREROUTING -i pppoe-wan -p udp -m multiport --dports 43000:43010 -j DNAT --to-destination 192.168.1.25
  10. -A POSTROUTING -o pppoe-wan -j MASQUERADE
  11. COMMIT
  12. *mangle
  13. :PREROUTING ACCEPT [0:0]
  14. :INPUT ACCEPT [0:0]
  15. :FORWARD ACCEPT [0:0]
  16. :OUTPUT ACCEPT [0:0]
  17. :POSTROUTING ACCEPT [0:0]
  18. -A FORWARD -o pppoe-wan -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
  19. COMMIT
  20. *filter
  21. :INPUT ACCEPT [0:0]
  22. :FORWARD ACCEPT [0:0]
  23. :OUTPUT ACCEPT [0:0]
  24. -A INPUT -i pppoe-wan -p tcp -m tcp --dport 22 -m state --state NEW -j ACCEPT
  25. -A INPUT -i pppoe-wan -m state ! --state RELATED,ESTABLISHED -j DROP
  26. COMMIT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!