-
iptables configuration file
/etc/iptables.up.rules
# Generated by iptables-save v1.4.4 on Tue Jul 6 19:02:33 2010
*nat
:PREROUTING DROP [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A PREROUTING -d 8.8.8.8 -i eth1 -j ACCEPT
-A PREROUTING -d 4.4.4.4 -i eth1 -j ACCEPT
-A PREROUTING -d w.x.y.z -i eth1 -j ACCEPT #(old mail server ip)
-A PREROUTING -d a.b.c.d -i eth1 -j ACCEPT #(mail server ip)
-A PREROUTING -d mail.uvw.in -i eth1 -j ACCEPT
-A PREROUTING -d l.m.n.o/29 -i eth1 -j ACCEPT #(old network ip)
-A PREROUTING -d r.s.t.u -i eth1 -j ACCEPT #(proxy server ip)
-A PREROUTING -d 122.c.d.146 -i eth1 -j ACCEPT #(allow ip)
-A PREROUTING -d 122.e.f.147 -i eth1 -j ACCEPT #(allow ip)
# Samba and Proxy
-A PREROUTING -p tcp -m tcp -m multiport -i eth1 -j ACCEPT --dports 139,445,3128,9000
-A POSTROUTING -s 10.1.5.0/24 -o eth0 -j MASQUERADE
-A PREROUTING -p tcp -m tcp --dport 11500 -j ACCEPT
-A PREROUTING -p tcp -m tcp -m multiport -i eth1 -j REDIRECT --to-ports 3128 --dports 80,8080,9000
COMMIT
# Completed on Tue Jul 6 19:02:33 2010
# Generated by iptables-save v1.4.4 on Tue Jul 6 19:02:33 2010
*mangle
:PREROUTING ACCEPT [602:341342]
:INPUT ACCEPT [568:338000]
:FORWARD ACCEPT [34:3342]
:OUTPUT ACCEPT [676:370648]
:POSTROUTING ACCEPT [710:373990]
COMMIT
# Completed on Tue Jul 6 19:02:33 2010
# Generated by iptables-save v1.4.4 on Tue Jul 6 19:02:33 2010
*filter
:INPUT ACCEPT [568:338000]
:FORWARD ACCEPT [34:3342]
:OUTPUT ACCEPT [676:370648]
COMMIT
# Completed on Tue Jul 6 19:02:33 2010
0 comments: