Linux - статьи



              

I.2. Пример rc.DMZ.firewall


#!/bin/sh # # rc.DMZ.firewall - DMZ IP Firewall script
for Linux 2.4.x and iptables # # Copyright (C) 2001 Oskar Andreasson <
bluefluxATkoffeinDOTnet> # # This program is free software; you can
redistribute it and/or modify # it under the terms of the GNU General
Public License as published by # the Free Software Foundation; version
2 of the License. # # This program is distributed in the hope
that it will be useful, # but WITHOUT ANY WARRANTY; without even the
implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR
PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU
General Public License # along with this program or from the site
that you downloaded it # from; if not, write to the Free Software
Foundation, Inc., 59 Temple # Place, Suite 330, Boston, MA 02111-1307 USA #

####################################### # # 1. Configuration options. #

# # 1.1 Internet Configuration. #

INET_IP="194.236.50.152" HTTP_IP="194.236.50.153" DNS_IP="194.236.50.154" INET_IFACE="eth0"

# # 1.1.1 DHCP #

# # 1.1.2 PPPoE #

# # 1.2 Local Area Network configuration. # # your LAN's IP range and localhost IP.
/24 means to only use the first 24 # bits of the 32 bit IP address. the same
as netmask 255.255.255.0 #

LAN_IP="192.168.0.1" LAN_IFACE="eth1"

# # 1.3 DMZ Configuration. #

DMZ_HTTP_IP="192.168.1.2" DMZ_DNS_IP="192.168.1.3" DMZ_IP="192.168.1.1" DMZ_IFACE="eth2"

# # 1.4 Localhost Configuration. #

LO_IFACE="lo" LO_IP="127.0.0.1"

# # 1.5 IPTables Configuration. #

IPTABLES="/usr/sbin/iptables"

# # 1.6 Other Configuration. #

######################################## # # 2. Module loading. #

# # Needed to initially load modules # /sbin/depmod -a

# # 2.1 Required modules #

/sbin/modprobe ip_tables /sbin/modprobe ip_conntrack /sbin/modprobe iptable_filter /sbin/modprobe iptable_mangle /sbin/modprobe iptable_nat /sbin/modprobe ipt_LOG /sbin/modprobe ipt_limit /sbin/modprobe ipt_state




Содержание  Назад  Вперед