blob: d0ee2b4b1cc0cc7f37c1d4425edcdc8ea9f2cb42 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
#!/bin/ash
# Redirect from VM to lpd
for br in br0 nat1 vsw2; do
[ -d "/sys/class/net/${br}/brif" ] || continue
devs=$(ls -1 "/sys/class/net/${br}/brif/")
for dev in $devs; do
case "$dev" in boot0|eth?|eth??|tun?|tun??) continue ;; esac
iptables -t nat -A PREROUTING -m physdev --physdev-in "$dev" -d 192.168.101.1 -p tcp --dport 515 -j REDIRECT --to-port 5515
iptables -t nat -A PREROUTING -m physdev --physdev-in "$dev" -d 192.169.101.1 -p tcp --dport 515 -j REDIRECT --to-port 5515
iptables -t nat -A PREROUTING -m physdev --physdev-in "$dev" -d 100.100.100.100 -p tcp --dport 515 -j REDIRECT --to-port 5515
iptables -A INPUT -m physdev --physdev-in "$dev" -p tcp --dport 5515 -j ACCEPT
done
done
# Close from outside
iptables -A INPUT -p tcp --dport 515 -j DROP
iptables -A INPUT -p tcp --dport 5515 -j DROP
exit 0
|
