Tenho o seguinte script:
IFACE=ppp0
LAN=192.168.0.0/24
modprobe iptable_nat
modprobe ip_conntrack
modprobe ip_nat_ftp
iptables -F
iptables -t nat -A POSTROUTING -o $IFACE -j MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -i eth1 -s $LAN -p tcp --dport 80 -j REDIRECT --to-port 3128
iptables -t nat -A PREROUTING -i eth1 -s $LAN -p tcp --dport 443 -j REDIRECT --to-port 3128
#Input
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -i eth1 -s $LAN -p tcp --syn --dport 22 -j ACCEPT
iptables -A INPUT -i eth1 -s $LAN -p tcp --dport 3128 -j ACCEPT
iptables -A INPUT -i eth1 -s $LAN -p icmp -j ACCEPT
iptables -A INPUT -j DROP
#Forward
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -o $IFACE -s $LAN -p tcp --dport 53 -j ACCEPT
iptables -A FORWARD -o $IFACE -s $LAN -p udp --dport 53 -j ACCEPT
iptables -A FORWARD -o $IFACE -s $LAN -p tcp --dport 443 -j ACCEPT
iptables -A FORWARD -o $IFACE -s $LAN -p tcp --dport 80 -j ACCEPT
iptables -A FORWARD -o $IFACE -s $LAN -p tcp --dport 21 -j ACCEPT
iptables -A FORWARD -o $IFACE -s $LAN -p icmp -j ACCEPT
iptables -A FORWARD -j DROP
Agora quando comento as linhas:
#iptables -t nat -A PREROUTING -i eth1 -s $LAN -p tcp --dport 80 -j REDIRECT --to-port 3128
#iptables -t nat -A PREROUTING -i eth1 -s $LAN -p tcp --dport 443 -j REDIRECT --to-port 3128
#iptables -A INPUT -i eth1 -s $LAN -p tcp --dport 3128 -j ACCEPT
nao consigo mais acessar. O que pode estar havendo??
Obrigado a todos!!