M300A Sehr hopfen, vielen IBU, wow! | Code :
- root@gw:~# route -n
- Kernel IP routing table
- Destination Gateway Genmask Flags Metric Ref Use Iface
- 10.100.0.13 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
- 10.100.0.1 10.100.0.13 255.255.255.255 UGH 0 0 0 tun0
- 10.0.0.0 10.100.0.13 255.255.255.0 UG 0 0 0 tun0
- 82.241.96.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0.1
- 10.1.0.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan
- 10.1.1.0 0.0.0.0 255.255.255.0 U 0 0 0 ath0
- 0.0.0.0 82.241.96.254 0.0.0.0 UG 0 0 0 eth0.1
|
Pour iptables, voici le -L de base, mais tout n'est pas visible. Je sais pas comment tout afficher
Code :
- root@gw:~# iptables -L
- Chain INPUT (policy DROP)
- target prot opt source destination
- DROP all -- anywhere anywhere state INVALID
- ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
- DROP tcp -- anywhere anywhere tcp option=!2 flags:SYN/SYN
- input_rule all -- anywhere anywhere
- input_wan all -- anywhere anywhere
- LAN_ACCEPT all -- anywhere anywhere
- WLAN_ACCEPT all -- anywhere anywhere
- ACCEPT icmp -- anywhere anywhere
- ACCEPT gre -- anywhere anywhere
- REJECT tcp -- anywhere anywhere reject-with tcp-reset
- REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
- Chain FORWARD (policy DROP)
- target prot opt source destination
- DROP all -- anywhere anywhere state INVALID
- TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
- ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
- forwarding_rule all -- anywhere anywhere
- forwarding_wan all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- Chain OUTPUT (policy DROP)
- target prot opt source destination
- DROP all -- anywhere anywhere state INVALID
- ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
- output_rule all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- REJECT tcp -- anywhere anywhere reject-with tcp-reset
- REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
- Chain LAN_ACCEPT (1 references)
- target prot opt source destination
- RETURN all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- Chain WLAN_ACCEPT (1 references)
- target prot opt source destination
- RETURN all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- Chain forwarding_rule (1 references)
- target prot opt source destination
- Chain forwarding_wan (1 references)
- target prot opt source destination
- Chain input_rule (1 references)
- target prot opt source destination
- Chain input_wan (1 references)
- target prot opt source destination
- ACCEPT tcp -- anywhere anywhere tcp dpt:22
- Chain output_rule (1 references)
- target prot opt source destination
|
Evidemment les machines connecté à la gateway ont 10.1.0.1 comme passerelle, donc niveau routage c'est ok ! |