appélis.se

skorpan

Brandvägg

Skorpan använder brandväggen firestarter

apt-get install firestarter

Regler
Allow from
127.0.0.1/255.0.0.0,
192.168.1.0/255.255.255.0,
10.0.0.0/255.255.255.0,
10.8.0.0/255.255.255.0,

Allow service
SSH, 22, everyone,
HTTP, 80, everyone,
HTTP, 8080, everyone,
Sieve, 2000, everyone, x10test-android
#SMTP, 25, everyone,
Imaps, 993, everyone,
#Pop3s, 995, everyone,
#POP3, 110, everyone,
#Openvpn, 1194, everyone,

Regler för VPN och forwarding
/etc/firestarter/user-pre
$IPT -A INPUT -p udp –dport 5353 -d 224.0.0.251 -j ACCEPT
$IPT -A OUTPUT -p udp –dport 5353 -d 224.0.0.251 -j ACCEPT
$IPT -A INPUT -i tun+ -j ACCEPT
$IPT -A FORWARD -i tun+ -j ACCEPT
$IPT -A FORWARD -i eth+ -j ACCEPT
$IPT -A OUTPUT -o tun+ -j ACCEPT

/etc/sysctl.conf
net.ipv4.ip_forward=1