BlueGreycalmElegant

Català-Valencià – Catalan中文 – Chinese (Simplified)中文 – Chinese (Traditional)Česky – CzechDansk – DanishNederlands – DutchEnglish – EnglishSuomi – FinnishFrançais – FrenchDeutsch – Germanעברית – Hebrewहिंदी – HindiMagyar – HungarianBahasa Indonesia – IndonesianItaliano – Italian日本語 – Japanese한국어 – KoreanМакедонски – Macedonianमराठी – MarathiNorsk – NorwegianPolski – PolishPortuguês – PortuguesePortuguês – Portuguese (Brazil)Русский – RussianSlovenčina – SlovakSlovenščina – SlovenianEspañol – SpanishSvenska – SwedishTürkçe – TurkishУкраїнська – UkrainianOëzbekcha – Uzbek

Compare Revisions

• This comparison shows the changes necessary to convert path

  → /scripts/alcasar-iptables.sh @ 373

  → /scripts/alcasar-iptables.sh @ 376

  ↔ Reverse comparison

• Compare Path:	Rev

  With Path:	Rev

Ignore whitespace Rev 373 → Rev 376

/scripts/alcasar-iptables.sh
12,12 → 12,12
# + suppression du filtrage par la table "NAT" -> utilisation de la table "MANGLE"
IPTABLES="/sbin/iptables"
FILTERING="yes"
FILTERING="no"
EXTIF="eth0"
INTIF="eth1"
TUNIF="tun0"
PRIVATE_NETWORK_MASK="182.168.180.0/24"
PRIVATE_IP="182.168.180.1"
PRIVATE_NETWORK_MASK="182.168.182.0/24"
PRIVATE_IP="182.168.182.1"
# On vide (flush) toutes les règles existantes
$IPTABLES -F
49,7 → 49,7
$IPTABLES -A INPUT -i $INTIF -j ULOG --ulog-prefix "RULE Protect1 -- REJECT "
$IPTABLES -A INPUT -i $INTIF -j REJECT
## On drop les scans XMAS et NULL (à voir ...)
## On drop les scans XMAS et NULL (à voir si utile ...)
#$IPTABLES -A INPUT -p tcp --tcp-flags FIN,URG,PSH FIN,URG,PSH -j DROP
#$IPTABLES -A INPUT -p tcp --tcp-flags ALL ALL -j DROP
#$IPTABLES -A INPUT -p tcp --tcp-flags ALL NONE -j DROP