No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

iptables.rules 975B

123456789101112131415161718192021222324252627282930313233343536373839404142
  1. *filter
  2. :INPUT ACCEPT [139:11952]
  3. :FORWARD ACCEPT [0:0]
  4. :OUTPUT ACCEPT [31:3232]
  5. # Allow host ports
  6. -A INPUT -p tcp --dport 22 -j ACCEPT
  7. -A INPUT -p tcp --dport 53 -j ACCEPT
  8. -A INPUT -p tcp --dport 80 -j ACCEPT
  9. -A INPUT -p tcp --dport 13699 -j ACCEPT
  10. # Standard Internal Traffic
  11. -A INPUT -i lo -j ACCEPT
  12. -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
  13. # NAT Forwarding
  14. -A FORWARD -i enp2s0.10 -o enp2s0.2 -j ACCEPT
  15. -A FORWARD -i enp2s0.11 -o enp2s0.2 -j ACCEPT
  16. -A FORWARD -i enp2s0.12 -o enp2s0.2 -j ACCEPT
  17. -A FORWARD -i enp2s0.13 -o enp2s0.2 -j ACCEPT
  18. -A FORWARD -i enp2s0.14 -o enp2s0.2 -j ACCEPT
  19. # NAT Returns
  20. -A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  21. -A FORWARD -m conntrack --ctstate INVALID -j DROP
  22. # Drop weird shit
  23. -A INPUT -p tcp -j DROP
  24. COMMIT
  25. *nat
  26. :PREROUTING ACCEPT [12:835]
  27. :INPUT ACCEPT [12:835]
  28. :OUTPUT ACCEPT [1:104]
  29. :POSTROUTING ACCEPT [0:0]
  30. # General NAT Traffic
  31. -A POSTROUTING -o enp2s0.2 -j MASQUERADE
  32. COMMIT