Autres/RaspAP
1
0
Fork 0
mirror of https://github.com/billz/raspap-webgui.git synced 2025-07-08 23:47:40 +02:00
Code Issues Releases Wiki Activity
RaspAP/installers/iptables.rules
Bill Zimmerman ac4f7be5bb
Update iptables.rules
2020-03-20 16:23:54 +01:00

31 lines
663 B
Plaintext
Raw Blame History

# RaspAP iptables rules
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT DROP [0:0]
# loopback
-A INPUT -i lo -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A INPUT -d 127.0.0.1 -j ACCEPT
-A OUTPUT -s 127.0.0.1 -j ACCEPT
# ACCEPT already ESTABLISHED connections
-A INPUT -p ALL -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
# ACCEPT all OUTPUT
-A OUTPUT -p ALL -o eth0 -j ACCEPT
# SSH
-A INPUT -p tcp -i eth0 --dport 22 -m state --state NEW -j ACCEPT
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A POSTROUTING -j MASQUERADE
-A POSTROUTING -s 192.168.50.0/24 ! -d 192.168.50.0/24 -j MASQUERADE
COMMIT
Reference in New Issue View Git Blame Copy Permalink