diff options
author | Mystery Man <unknown@mandriva.org> | 2005-09-01 20:27:41 +0000 |
---|---|---|
committer | Mystery Man <unknown@mandriva.org> | 2005-09-01 20:27:41 +0000 |
commit | f027d873e1c6f4b372b541cc351c71820a9063cd (patch) | |
tree | 4c1914e76177c18cf0a45829bbdf7eb0a92c2435 /mdk-stage1/rp-pppoe/configs/firewall-masq | |
parent | 5d83bfe6f6b331df65d493a78e9ed2f1b30a2464 (diff) | |
download | drakx-backup-do-not-use-f027d873e1c6f4b372b541cc351c71820a9063cd.tar drakx-backup-do-not-use-f027d873e1c6f4b372b541cc351c71820a9063cd.tar.gz drakx-backup-do-not-use-f027d873e1c6f4b372b541cc351c71820a9063cd.tar.bz2 drakx-backup-do-not-use-f027d873e1c6f4b372b541cc351c71820a9063cd.tar.xz drakx-backup-do-not-use-f027d873e1c6f4b372b541cc351c71820a9063cd.zip |
This commit was manufactured by cvs2svn to create tagV10_3_0_51mdk
'V10_3_0_51mdk'.
Diffstat (limited to 'mdk-stage1/rp-pppoe/configs/firewall-masq')
-rw-r--r-- | mdk-stage1/rp-pppoe/configs/firewall-masq | 35 |
1 files changed, 0 insertions, 35 deletions
diff --git a/mdk-stage1/rp-pppoe/configs/firewall-masq b/mdk-stage1/rp-pppoe/configs/firewall-masq deleted file mode 100644 index cb16fbecf..000000000 --- a/mdk-stage1/rp-pppoe/configs/firewall-masq +++ /dev/null @@ -1,35 +0,0 @@ -#!/bin/sh -# -# firewall-masq This script sets up firewall rules for a machine -# acting as a masquerading gateway -# -# Copyright (C) 2000 Roaring Penguin Software Inc. This software may -# be distributed under the terms of the GNU General Public License, version -# 2 or any later version. - -# Interface to Internet -EXTIF=ppp+ - -ANY=0.0.0.0/0 - -ipchains -P input ACCEPT -ipchains -P output ACCEPT -ipchains -P forward DENY - -ipchains -F forward -ipchains -F input -ipchains -F output - -# Deny TCP and UDP packets to privileged ports -ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p udp -j DENY -ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p tcp -j DENY - -# Deny TCP connection attempts -ipchains -A input -l -i $EXTIF -p tcp -y -j DENY - -# Deny ICMP echo-requests -ipchains -A input -l -i $EXTIF -s $ANY echo-request -p icmp -j DENY - -# Do masquerading -ipchains -A forward -j MASQ -echo 1 > /proc/sys/net/ipv4/ip_forward |