release/src/router/nocat/libexec/loopback/initialize.fw

   1 #!/bin/sh
   2
   3 # Note: your PATH is inherited from the gateway process
   4
   5 # Enable IP forwarding.
   6 #
   7 # echo "1" > /proc/sys/net/ipv4/ip_forward
   8 #
   9 # iptables -t filter -P OUTPUT ACCEPT
  10
  11 # Flush all user-defined chains
  12 #
  13 for chain in NoCat_OK NoCat_Cap; do
  14     iptables -t nat -N $chain 2>/dev/null
  15     iptables -t nat -F $chain
  16     iptables -t nat -D OUTPUT -j $chain 2>/dev/null
  17     iptables -t nat -A OUTPUT -j $chain
  18 done
  19
  20
  21 #
  22 # Redirect outbound non-auth web traffic to the local gateway process
  23 #
  24 # iptables -t nat -A NoCat_OK -j LOG --log-level info
  25 iptables -t nat -A NoCat_Cap -p tcp --dport 80 \
  26                     -j REDIRECT --to-port $GatewayPort
  27 iptables -t nat -A NoCat_Cap -p tcp --dport 443 \
  28                     -j REDIRECT --to-port $GatewayPort
  29
  30