[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Problemas con Iptables

iptables -F
iptables -X
iptables -Z
iptables -t nat -F
iptables -t nat -X
iptables -t nat -Z

iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT

#iptables -t nat -A POSTROUTING -s 192.168.111.0/24 -o eth2 -j MASQUERADE

iptables -t nat -A POSTROUTING -s 192.168.111.24 -o eth2 -d
192.168.0.22 -j MASQUERADE

echo 1 > /proc/sys/net/ipv4/ip_forward

iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source
00:12:34:56:78:90 -p tcp --dport 139 -o eth2 -d 192.168.0.22 -j ACCEPT
&& echo "OK linea 1"

iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source
00:12:34:56:78:90 -p udp --dport 139 -o eth2 -d 192.168.0.22 -j ACCEPT
&& echo "OK linea 2"

iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source
00:12:34:56:78:90 -p tcp --dport 445 -o eth2 -d 192.168.0.22 -j ACCEPT
&& echo "OK linea 3"

iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source
00:12:34:56:78:90 -p udp --dport 445 -o eth2 -d 192.168.0.22 -j ACCEPT
&& echo "OK linea 4"

 iptables -A FORWARD -i eth0 -p tcp -o eth2 -j DROP
 iptables -A FORWARD -i eth0 -p udp -o eth2 -j DROP

# el equipo win con la ip 192.168.111.24 tiene que tener un GW (Puerta
de enlace) 192.168.111.1 para que esto funcione.
# salu2


http://wiki.debian.org/NormasLista
Reply to: