First page Back Continue Last page Overview Graphics

FireWalling

  • # Filtrando puertos de las IPs de los servidores de internet (DMZ)
  • IPS="80.100.200.75 80.100.200.76"
  • PROTOS="tcp udp"
  • SERVEIS_TCP="25,80,53,110,5432,21,20,22"
  • SERVEIS_TCP_RANGS="8000:8100"
  • SERVEIS_UDP="53,161,163"
  • IPT="iptables -A FORWARD -i br0"
  • for IP in $IPS
  • do
  • # Filtros TCP
  • $IPT -m mport -p tcp -d $IP --dport $SERVEIS_TCP -j ACCEPT
  • # Filtros a RANGOS de puertos TCP
  • for P in $SERVEIS_TCP_RANGS
  • do
  • $IPT -p tcp -d $IP --dport $P -j ACCEPT
  • done
  • # Filtros UDP
  • $IPT -m mport -p udp -d $IP --dport $SERVEIS_UDP -j ACCEPT
  • # Filtros a RANGOS de puerts UDP
  • #for P in $SERVEIS_UDP_RANGS
  • #do
  • #$IPT -p udp -d $IP --dport $P -j ACCEPT
  • #done

    Notes: