julinox33
- Datum:
- 28. September 2014 21:32
- Code:
-
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24
#!/bin/sh set -e IPT=/sbin/iptables [ "$IFACE" != "lo" ] || exit 0 # forwarding deaktivieren echo 0 > /proc/sys/net/ipv4/ip_forward # Default-Policies setzen $IPT -P INPUT DROP $IPT -P FORWARD DROP $IPT -P OUTPUT ACCEPT # loopback freischalten $IPT -A INPUT -i lo -j ACCEPT $IPT -A OUTPUT -o lo -j ACCEPT # Antworten auf bestehende Verbindungen erlauben $IPT -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT