RE: Squid / iptables et la redirection de port

To: Raphaël 'SurcouF' Bordet <surcouf@debianfr.net>
Cc: <debian-user-french@lists.debian.org>
Subject: RE: Squid / iptables et la redirection de port
From: Stéphane BERDIN <stephane.berdin@mdpmotor.com>
Date: Wed, 2 Feb 2005 11:11:32 +0100
Message-id: <[🔎] B45A028505AED711AA50000BCD4FB163EA8BBD@proliant2500.domaine>

>Peux-t-on voir les règles de la table FORWARD ?
Bien sur !

iptables -F
iptables -X
iptables -t nat --flush

iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP

iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT

iptables -A OUTPUT -o eth0 -j ACCEPT
iptables -A INPUT -i eth0 -j ACCEPT

iptables -A INPUT -i eth0 -j ACCEPT
iptables -A OUTPUT -o eth0 -j ACCEPT

iptables -A FORWARD -o eth0 -i eth0 -p tcp --dport 443 -j ACCEPT
iptables -A FORWARD -o eth0 -i eth0 -p tcp --dport 80 -j ACCEPT
iptables -A FORWARD  -o eth0 -i eth0 -p tcp --dport 9900 -j ACCEPT
iptables -A FORWARD  -o eth0 -i eth0 -p tcp --dport 8500 -j ACCEPT
iptables -A FORWARD   -o eth0 -i eth0 -p udp --dport 53 -j ACCEPT
iptables -A FORWARD   -o eth0 -i eth0 -p udp --dport 3128 -j ACCEPT
iptables -A FORWARD   -o eth0 -i eth0 -p udp --dport 8080 -j ACCEPT

# Tout ce qui est à destination d'internet est redirigé sur le proxy 

iptables -t nat -A PREROUTING -d 192.168.8.8 -p tcp --dport 80 -j DNAT --to-destination 192.168.8.8:3128


iptables -A FORWARD -o eth0 -i eth0 -j ULOG
iptables -A OUTPUT -o eth0 -j ULOG
iptables -A OUTPUT -o lo -j ULOG

Reply to:

Follow-Ups:
- Re: Squid / iptables et la redirection de port
  - From: Raphaël 'SurcouF' Bordet <surcouf@debianfr.net>

Prev by Date: Re: noyau 2.6 et graveur
Next by Date: Re: Squid / iptables et la redirection de port
Previous by thread: Re: Squid / iptables et la redirection de port
Next by thread: Re: Squid / iptables et la redirection de port
Index(es):
- Date
- Thread