| 147,15 → 147,6 |
|---|
| ipset create havp_wl_set hash:net hashsize 1024 |
| fi |
| |
| # Sauvegarde de tous les set sauf ceux d'interception (pour restaurer après redémarrage) |
| # Backup all sets except interception set |
| ipset save blacklist_ip_blocked > $SAVE_DIR/ipset_save |
| ipset save whitelist_ip_allowed >> $SAVE_DIR/ipset_save |
| echo "create no_filtering_set hash:net family inet hashsize 1024 maxelem 65536" >> $SAVE_DIR/ipset_save |
| echo "create havp_set hash:net family inet hashsize 1024 maxelem 65536" >> $SAVE_DIR/ipset_save |
| echo "create havp_bl_set hash:net family inet hashsize 1024 maxelem 65536" >> $SAVE_DIR/ipset_save |
| echo "create havp_wl_set hash:net family inet hashsize 1024 maxelem 65536" >> $SAVE_DIR/ipset_save |
| |
| ############################# |
| # PREROUTING # |
| ############################# |
| 441,8 → 432,5 |
|---|
| # Dynamic NAT on EXTIF |
| $IPTABLES -A POSTROUTING -t nat -o $EXTIF -j MASQUERADE |
| |
| # Save all rules |
| /usr/libexec/iptables.init save |
| |
| # End of script |
| |