summaryrefslogtreecommitdiffstats
path: root/firewall.conf
diff options
context:
space:
mode:
Diffstat (limited to 'firewall.conf')
-rw-r--r--firewall.conf45
1 files changed, 45 insertions, 0 deletions
diff --git a/firewall.conf b/firewall.conf
new file mode 100644
index 0000000..5e7827a
--- /dev/null
+++ b/firewall.conf
@@ -0,0 +1,45 @@
+IPTABLES=/sbin/iptables
+
+# WAN configuration
+WAN_INT='ethX'
+IP='x.x.x.x'
+
+# Allow ping
+PING=1
+
+# Allow FTP server (passive and active)
+FTP=0
+
+# NAT LAN_NETWORK
+NAT=0
+LAN_NETWORK=''
+# Allow traffic between the WAN and LAN
+LAN=0
+LAN_INT='ethX'
+
+# Allow all traffic for interface(s)
+# example ALLOW_INTS='br0 xenbr42'
+ALLOW_INTS=''
+
+# Open ports
+# source-protocole-portx:porty,portz,porta,... source-protocole-portx:porty,portz,.. ...
+# example : OPEN_PORTS='0.0.0.0/0-tcp-ssh,imap,imaps 0.0.0.0/0-udp-1342'
+OPEN_PORTS='0.0.0.0/0-tcp-ssh'
+
+# Port forwarding
+# source-port-destination:port-protocole source-port-destination:port-protocole ...
+# example : TRAFFICS='0.0.0.0/0-80-192.168.0.42:80-tcp 42.42.42.42-4242-192.168.0.43:22-tcp'
+TRAFFICS=""
+
+# Port redirection
+# interface-sourceport-destport-protocole
+# example : REDIRECTIONS='$LAN_INT-25-4242-tcp $WAN_INT-25-4242-udp eth42-32-25-tcp'
+REDIRECTIONS=""
+
+# Hook point to write your own iptables rules
+ipt_hook()
+{
+ echo "+ Load your own iptables rules"
+ # Write your own iptables rules here
+}
+