Olá Pessoal,
Preciso liberar o meu acesso ftp, num manjo nada de iptables, ai estao as regras:
Table: mangle
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
TOS tcp -- anywhere anywhere tcp sptop3 TOS set Minimize-Delay
TOS tcp -- anywhere anywhere tcp spt:smtp TOS set Minimize-Delay
TOS tcp -- anywhere anywhere tcp spt:http TOS set Maximize-Throughput
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
TOS tcp -- anywhere anywhere tcp dpt:smtp TOS set Minimize-Delay
TOS tcp -- anywhere anywhere tcp dptop3 TOS set Minimize-Delay
TOS tcp -- anywhere anywhere tcp dpt:http TOS set Maximize-Throughput
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Table: nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DNAT tcp -- anywhere 200-204-194-182.dsl.telesp.net.brtcp dpt:3389 to:192.168.0.92
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all -- 192.168.0.50 anywhere
MASQUERADE all -- 192.168.0.100 anywhere
MASQUERADE tcp -- anywhere anywhere tcp dpt:smtp
MASQUERADE tcp -- anywhere anywhere tcp dptop3
MASQUERADE tcp -- 192.168.0.0/24 hm165.locaweb.com.br
MASQUERADE tcp -- 192.168.0.0/24 ftpav.ca.com
MASQUERADE tcp -- 192.168.0.0/24 www.grisoft.cz
MASQUERADE all -- 192.168.0.223 anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Table: filter
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp flags:SYN,RST,ACK/SYN
ACCEPT udp -- anywhere anywhere udp dpt:domain
ACCEPT tcp -- anywhere anywhere tcp dpt:domain
ACCEPT udp -- anywhere anywhere udp dpt:domain
ACCEPT tcp -- anywhere anywhere tcp dpt:domain
ACCEPT udp -- anywhere anywhere udp dpt:domain
ACCEPT tcp -- anywhere anywhere tcp dpt:domain
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
Chain FORWARD (policy ACCEPT)
target prot opt source destination
DROP all -- anywhere anywhere unclean
DROP icmp -- anywhere anywhere icmp echo-request
ACCEPT icmp -- anywhere anywhere icmp echo-request limit: avg 1/sec burst 5
ACCEPT tcp -- anywhere anywhere limit: avg 1/sec burst 5
ACCEPT tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5
ACCEPT all -- 192.168.0.0/24 anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Preciso liberar o acesso FTP a um servidor externo a rede.
Obrigado =?)