Пользователь
Сообщения: 89
Благодарности: 0
|
Профиль
|
Отправить PM
| Цитировать
int_if="xl0"
ext_if_cheap="tun0"
icmp_types="{ echoreq, unreach}"
trusted_lan="192.168.0.0/24"
localnet="127.0.0.0/8"
nat on $ext_if_cheap from $servers to any -> ($ext_if_cheap)
nat on $ext_if_cheap from $trusted_lan to any port { 25 80 50160 22 110 443 519
0 8000 8080 465 9996 3128 4433 3084 6969 } -> ($ext_if_cheap)
nat on $ext_if_cheap from 192.168.0.203 to any -> ($ext_if_cheap)
nat on $ext_if_cheap from $trusted_lan to any port { 25 80 50160 22 110 443 519
0 8000 8080 465 9996 3128 4433 3084 6969 } -> ($ext_if_cheap)
nat on $ext_if_cheap from 192.168.0.203 to any -> ($ext_if_cheap)
rdr on $int_if proto tcp from $ext_if_cheap to ! 192.168.0.220 port http -> 192.
168.0.201 port 3128
pass out on $ext_if_cheap from $ext_if_cheap to any keep state
pass in log on $ext_if_cheap proto tcp from any to $ext_if_cheap port {25 53 501
60 80 110 2222 22 21 2121 8080 6969} keep state
pass in log on $ext_if_cheap proto udp from any to $ext_if_cheap port {53} keep
state
pass log inet proto icmp all icmp-type $icmp_types
ВОТ ПРОПИСАНЫ ПОРТЫ
nat on $ext_if_cheap from $trusted_lan to any port { 25 80 50160 22 110 443 519
0 8000 8080 465 9996 3128 4433 3084 6969 } -> ($ext_if_cheap)
nat on $ext_if_cheap from 192.168.0.203 to any -> ($ext_if_cheap)
nat on $ext_if_cheap from $trusted_lan to any port { 25 80 50160 22 110 443 519
0 8000 8080 465 9996 3128 4433 3084 6969 } -> ($ext_if_cheap)
nat on $ext_if_cheap from 192.168.0.203 to any -> ($ext_if_cheap)
И ВОТ ПРОПИСАНЫ ПОРТЫ
pass in log on $ext_if_cheap proto tcp from any to $ext_if_cheap port {25 53 501
60 80 110 2222 22 21 2121 8080 6969} keep state
ТОЛЬКО 110 25 53 22 РАБОТАЮТ А ВСЕ ОСТАЛЬНЫЕ НЕ РАБОТАЮТ.
В ЧЕМ ПРИЧИНА?
СПАСИБО!
|
Отправлено: 15:37, 29-03-2012
| #5
|
