iptables -F iptables -X iptables -Z iptables -t nat -F iptables -t nat -X iptables -t nat -Z
iptables -P INPUT ACCEPT iptables -P OUTPUT ACCEPT iptables -P FORWARD ACCEPT #iptables -t nat -A POSTROUTING -s 192.168.111.0/24 -o eth2 -j MASQUERADE iptables -t nat -A POSTROUTING -s 192.168.111.24 -o eth2 -d 192.168.0.22 -j MASQUERADE echo 1 > /proc/sys/net/ipv4/ip_forward iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source 00:12:34:56:78:90 -p tcp --dport 139 -o eth2 -d 192.168.0.22 -j ACCEPT && echo "OK linea 1" iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source 00:12:34:56:78:90 -p udp --dport 139 -o eth2 -d 192.168.0.22 -j ACCEPT && echo "OK linea 2" iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source 00:12:34:56:78:90 -p tcp --dport 445 -o eth2 -d 192.168.0.22 -j ACCEPT && echo "OK linea 3" iptables -A FORWARD -i eth0 -s 192.168.111.24 -m mac --mac-source 00:12:34:56:78:90 -p udp --dport 445 -o eth2 -d 192.168.0.22 -j ACCEPT && echo "OK linea 4" iptables -A FORWARD -i eth0 -p tcp -o eth2 -j DROP iptables -A FORWARD -i eth0 -p udp -o eth2 -j DROP # el equipo win con la ip 192.168.111.24 tiene que tener un GW (Puerta de enlace) 192.168.111.1 para que esto funcione. # salu2 http://wiki.debian.org/NormasLista -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
