# Iniciando o roteamento
# ------------------------------------------------------------------------------------------
echo 1 > /proc/sys/net/ipv4/ip_forward
# Mascaramento - Onde N (ethN) eh a interface ligada diretamente na Internet
# ------------------------------------------------------------------------------------------
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
iptables -A FORWARD -i eth0 -j ACCEPT
iptables -A FORWARD -i eth1 -j ACCEPT
iptables -A FORWARD -i eth2 -j ACCEPT
# Separando redes
# ------------------------------------------------------------------------------------------
iptables -A INPUT -s 10.0.10.0/24 -d 10.0.20.0/24 -j DROP
iptables -A INPUT -s 10.0.20.0/24 -d 10.0.10.0/24 -j DROP
# Bloqueando sites
# ------------------------------------------------------------------------------------------
iptables -A FORWARD -d 72.14.209.0/24 -j DROP
iptables -A INPUT -d 72.14.209.0/24 -j DROP
iptables -A OUTPUT -d 72.14.209.0/24 -j DROP
iptables -A FORWARD -d 69.36.224.0/19 -j DROP
iptables -A INPUT -d 69.36.224.0/19 -j DROP
iptables -A OUTPUT -d 69.36.224.0/19 -j DROP
iptables -A OUTPUT -d 216.129.96.0/19 -j DROP