core/modules/printergui/data/opt/openslx/iptables/rules.d/50-lpd-redirect-and-fw


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18

#!/bin/ash

# Redirect from VM to lpd
for br in br0 nat1 vsw2; do
	[ -d "/sys/class/net/${br}/brif" ] || continue
	devs=$(ls -1 "/sys/class/net/${br}/brif/")
	for dev in $devs; do
		case "$dev" in eth?|eth??|tun?|tun??) continue ;; esac
		iptables -t nat -A PREROUTING -m physdev --physdev-in "$dev" -d 192.168.101.1 -p tcp --dport 515 -j REDIRECT --to-port 5515
		iptables -t nat -A PREROUTING -m physdev --physdev-in "$dev" -d 100.100.100.100 -p tcp --dport 515 -j REDIRECT --to-port 5515
		iptables -A INPUT -m physdev --physdev-in "$dev" -p tcp --dport 5515 -j ACCEPT
	done
done
# Close from outside
iptables -A INPUT -p tcp --dport 515 -j DROP
iptables -A INPUT -p tcp --dport 5515 -j DROP
exit 0