Welcome to oscc.kr

/etc/rc.d/init.d/firewall


#!/bin/sh

# Get ip
extip="`ifconfig ppp0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`"

# Save ip
echo $extip > /etc/ppp/ip
ipchains -P input ACCEPT
ipchains -P output ACCEPT
ipchains -P forward DENY

ipchains -F forward
ipchains -F input
ipchains -F output
# Do masquerading
echo 1 > /proc/sys/net/ipv4/ip_forward
ipchains -A forward -j MASQ
ipchains -A forward -s 192.168.1.2/32 -j MASQ

# Modules
modprobe ip_masq_ftp
modprobe ip_masq_irc
modprobe ip_masq_portfw
modprobe ip_masq_autofw
modprobe ip_masq_raudio

# Port forwarding(for secondary web server & cast server)
ipmasqadm portfw -f
ipmasqadm portfw -a -P tcp -L $extip 8080 -R 192.168.1.2 80
ipmasqadm portfw -a -P tcp -L $extip 8000 -R 192.168.1.2 8000

# Port forwarding(for SORIBADA)
port=9000
while [ $port -lt 9004 ]
do
ipmasqadm portfw -a -P tcp -L $extip $port -R 192.168.1.2 $port
ipmasqadm portfw -a -P udp -L $extip $port -R 192.168.1.2 $port
let port=port+1
done

# Port forwarding(for dialpad)
#ipmasqadm autofw -A -v -u -r udp 51200 51201 -c tcp 7175
#ipmasqadm autofw -A -v -u -r tcp 51210 51211 -c tcp 7175

# Port forwarding(for battle.net)
echo 1 > /proc/sys/net/ipv4/ip_masq_udp_dloose
ipmasqadm autofw -A -r udp 6112 6112 -c tcp 6112

# Port forwarding(for ICQ)
port=2000
while [ $port -lt 2020 ]
do
ipmasqadm portfw -a -P tcp -L $extip $port -R 192.168.1.2 $port
let port=port+1
done

# Setting GMT
rdate -s soback.kornet.nm.kr
hwclock --systohc

# Domain Setting(dyndns.org)
/etc/ez-ipupdate -c /etc/ez-ipupdate.conf



firewall-restart


#!/bin/sh

# Load ip
oldip='cat /etc/ppp/ip'
extip="'ifconfig ppp0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`"

if $oldip=""; then
exit
else
if $oldip=$extip; then
exit
else

# Delete ipmasqadm entry
ipmasqadm portfw -d -P tcp -L $oldip 8080
ipmasqadm portfw -d -P tcp -L $oldip 8000

port=9000
while [ $port -lt 9004 ]
do
ipmasqadm portfw -d -P -tcp -L $oldip $port
ipmasqadm portfw -d -P -udp -L $oldip $port
let port=port+1
done

port=2000
while [ $port -lt 2020 ]
do
ipmasqadm portfw -d -P tcp -L $oldip $port
let port=port+1
done

# Exec firewall
/etc/rc.d/init.d/firewall

fi
fi