First page Back Continue Last page Overview Graphics
FireWalling
# Filtrando puertos de las IPs de los servidores de internet (DMZ)
IPS="80.100.200.75 80.100.200.76"
PROTOS="tcp udp"
SERVEIS_TCP="25,80,53,110,5432,21,20,22"
SERVEIS_TCP_RANGS="8000:8100"
SERVEIS_UDP="53,161,163"
IPT="iptables -A FORWARD -i br0"
for IP in $IPS
do
# Filtros TCP
$IPT -m mport -p tcp -d $IP --dport $SERVEIS_TCP -j ACCEPT
# Filtros a RANGOS de puertos TCP
for P in $SERVEIS_TCP_RANGS
do
$IPT -p tcp -d $IP --dport $P -j ACCEPT
done
# Filtros UDP
$IPT -m mport -p udp -d $IP --dport $SERVEIS_UDP -j ACCEPT
# Filtros a RANGOS de puerts UDP
#for P in $SERVEIS_UDP_RANGS
#do
#$IPT -p udp -d $IP --dport $P -j ACCEPT
#done
Notes: