Login form



Home LINUX Servers and Network
IPTABLES initial script
Share
http://iptables-tutorial.frozentux.net
http://www.netfilter.org
http://www.datanerds.net/~mike/binaries/

#!/bin/sh


INET_IP="194.236.50.155"
INET_IFACE="eth0"
INET_BROADCAST="194.236.50.255"



LAN_IP="192.168.0.2"
LAN_IP_RANGE="192.168.0.0/16"
LAN_IFACE="eth1"


LO_IFACE="lo"
LO_IP="127.0.0.1"

IPTABLES="/usr/sbin/iptables"


/sbin/depmod -a



# 2.1 Required modules
/sbin/modprobe ip_tables
/sbin/modprobe ip_conntrack
/sbin/modprobe iptable_filter
/sbin/modprobe iptable_mangle
/sbin/modprobe iptable_nat
/sbin/modprobe ipt_LOG
/sbin/modprobe ipt_limit
/sbin/modprobe ipt_state


#
# 2.2 Non-Required modules
#

#/sbin/modprobe ipt_owner
#/sbin/modprobe ipt_REJECT
#/sbin/modprobe ipt_MASQUERADE
#/sbin/modprobe ip_conntrack_ftp
#/sbin/modprobe ip_conntrack_irc
#/sbin/modprobe ip_nat_ftp
#/sbin/modprobe ip_nat_irc


$IPTABLES -F
$IPTABLES -X
$IPTABLES -Z

# $IPTABLES -P INPUT DROP
# $IPTABLES -P OUTPUT DROP
# $IPTABLES -P FORWARD DROP

$IPTABLES -P INPUT ACCEPT
$IPTABLES -P OUTPUT ACCEPT
$IPTABLES -P FORWARD ACCEPT
< Prev   Next >
 
[ BBC news ][ Yahoo news ][ Linux guru ][ Webmaster ACE ]