| Line 1... |
Line 1... |
| 1 |
#!/bin/sh
|
1 |
#!/bin/sh
|
| 2 |
#
|
2 |
#
|
| 3 |
# $Id: alcasar-iptables-local.sh 3016 2022-06-03 16:52:06Z rexy $
|
3 |
# $Id: alcasar-iptables-local.sh 3018 2022-06-04 16:54:31Z rexy $
|
| 4 |
#
|
4 |
#
|
| 5 |
# Custom rules for ALCASAR firewall
|
5 |
# Custom rules for ALCASAR firewall
|
| 6 |
#
|
6 |
#
|
| 7 |
# Examples:
|
7 |
# Examples:
|
| 8 |
# - Local MAC addresses filtering (MAC are in '/usr/local/etc/alcasar-iptables-local-mac-filtered'. Format : aa:09:23:2f:4d:ee)
|
8 |
# - Local MAC addresses filtering (MAC are in '/usr/local/etc/alcasar-iptables-local-mac-filtered'. Format : aa:09:23:2f:4d:ee)
|
| 9 |
# - allow ICMP from an Internet IP address (Admin_from) to EXTIF
|
9 |
# - allow ICMP from an Internet IP address (Admin_from) to EXTIF
|
| 10 |
# - Deny access to protected networks from internal LAN
|
10 |
# - Deny access to protected networks from internal LAN
|
| 11 |
# - allow SMTP from ALCASAR to an Internet server
|
11 |
# - allow SMTP from ALCASAR to an other server
|
| 12 |
# - Allow managers to access ACC from the external network
|
12 |
# - Allow managers to access ACC from the external network
|
| 13 |
# - Ports Address Translation (PAT) from Internet (one & multiple)
|
13 |
# - Ports Address Translation (PAT) from Internet (one & multiple)
|
| 14 |
# This script inherit of alcasar-iptables.sh variables : $INTIF, $EXTIF, $IPTABLES, etc
|
14 |
# This script inherit of alcasar-iptables.sh variables : $INTIF, $EXTIF, $IPTABLES, etc
|
| 15 |
# !!Beware, run the script "alcasar-iptables.sh" after changing this file.
|
15 |
# !!Beware, run the script "alcasar-iptables.sh" after changing this file.
|
| 16 |
|
16 |
|