Re: Redireccionar con IPTABLES
On Fri, Dec 24, 2004 at 05:56:36AM +0100, fernando villarroel wrote:
> Date: Fri, 24 Dec 2004 05:56:36 +0100 (CET)
> From: fernando villarroel <bbddlinux@yahoo.es>
> Subject: Re: Redireccionar con IPTABLES
> To: Alexander <alk@dasmico.com.mx>
> Cc: debian-user-spanish@lists.debian.org
>
> Les paso mi script :
>
> #!/bin/sh
>
> iptables -F
> iptables -X
> iptables -Z
> iptables -t nat -F
>
> iptables -F INPUT
> iptables -P INPUT DROP
> iptables -F OUTPUT
> iptables -P OUTPUT ACCEPT
> iptables -F FORWARD
> iptables -P FORWARD DROP
> iptables -t nat -P PREROUTING ACCEPT
> iptables -t nat -P POSTROUTING ACCEPT
>
> /sbin/iptables -A INPUT -i lo -j ACCEPT
> /sbin/iptables -A INPUT -s 192.168.1.0/24 -i eth1 -j
> ACCEPT
> /sbin/iptables -A INPUT -s 192.168.0.0/16 -i vpn -j
> ACCEPT
> #/sbin/iptables -A INPUT -s 0.0.0.0 -d 192.168.1.0/24
> -j DROP
> echo 1 > /proc/sys/net/ipv4/ip_forward
>
> /sbin/iptables -t nat -A POSTROUTING -s 192.168.1.0/24
> -o ppp0 -j MASQUERADE
> /sbin/iptables -t nat -A PREROUTING -s 0.0.0.0/0 -p
> tcp --dport 80 -j DNAT --to-destination 192.168.1.4:80
>
saludos, las reglas de POSTROUTING + PREROUTING no deberían ir
al final de script ? ... un abrazo y Feliz Nochebuena y Navidad !!!
--
______________________________________________
Walter Osoria - Debian GNU/Linux 3.0
wosoria@adinet.com.uy - LIcq 2277064
Linux registered user #124360
--------------------------------------------
GnuPG Public Key: http://www.keyserver.net
FingerPrint = 2D31 FE71 D7A7 20E7 D1EB 5593 CFE2 2D72 FFAC 33FA
----------------------------------------------------------------
Reply to: