# Generated by iptables-save v1.3.1 on Fri May 11 16:03:48 2007
*filter
:INPUT ACCEPT [4:727]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [11790:16610612]
-A INPUT -i lo -j ACCEPT
-A INPUT -s 10.10.10.0/255.255.255.0 -d 10.10.10.0/255.255.255.0 -j
ACCEPT
-A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j
ACCEPT
-A FORWARD -i eth1 -o eth0 -j ACCEPT
-A FORWARD -i eth0 -o eth1 -p tcp -m tcp --dport 80 -m state --state
NEW,RELATED,ESTABLISHED -j ACCEPT
-A OUTPUT -s 10.10.10.0/255.255.255.0 -d 10.10.10.0/255.255.255.0 -j
ACCEPT
COMMIT
# Completed on Fri May 11 16:03:48 2007
# Generated by iptables-save v1.3.1 on Fri May 11 16:03:48 2007
*nat
:PREROUTING ACCEPT [4:765]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A PREROUTING -d 192.22.23.10 -p tcp -m tcp --dport 65022 -j DNAT --to-
destination 10.10.10.2:22
-A PREROUTING -d 192.22.23.10 -p tcp -m tcp --dport 80 -j DNAT --to-
destination 10.10.10.2:80
-A POSTROUTING -s 10.10.10.0/255.255.255.0 -o eth1 -p tcp -j SNAT --to-
source 192.22.23.10
-A POSTROUTING -o eth0 -j MASQUERADE
COMMIT
# Completed on Fri May 11 16:03:48 2007
|
Similar Threads
Linear Mode
