Untitled

From Subtle Motmot, 3 Years ago, written in Plain Text.

Embed

Download Paste or View Raw
Hits: 542

units=63

IP4='IPV4ｱﾄﾞﾚｽ'

PSID='MAP-E_PSID'

LANDEV='LANｲﾝﾀｰﾌｪｲｽ'

WAN6DEV='WANｲﾝﾀｰﾌｪｲｽ'

TUNDEV='MAP-Eｲﾝﾀｰﾌｪｲｽ'

iptables -t nat -F PREROUTING

iptables -t nat -F OUTPOUT

iptables -t nat -F POSTROUTING

rule=1

while [ $rule -le $units ] ; do

mark=`expr $rule + 16`

pn=`expr $rule - 1`

portl=`expr $rule \* 1024 + $PSID \* 16`

portr=`expr $portl + 15`

iptables -t nat -A PREROUTING -p tcp -m statistic --mode nth --every $units --packet $pn -j MARK --set-mark $mark

iptables -t nat -A OUTPUT -p tcp -m statistic --mode nth --every $units --packet $pn -j MARK --set-mark $mark

iptables -t nat -A POSTROUTING -p icmp -m connlimit --connlimit-daddr --connlimit-upto 16 --connlimit-mask 0 -o $TUNDEV -j SNAT --to $IP4:$portl-$portr

iptables -t nat -A POSTROUTING -p tcp -o $TUNDEV -m mark --mark $mark -j SNAT --to $IP4:$portl-$portr

iptables -t nat -A POSTROUTING -p udp -m connlimit --connlimit-daddr --connlimit-upto 16 --connlimit-mask 0 -o $TUNDEV -j SNAT --to $IP4:$portl-$portr

rule=`expr $rule + 1`

done

sleep 5

iptables -t nat -A PREROUTING -i $LANDEV -j zone_lan_prerouting

iptables -t nat -A PREROUTING -i $WAN6DEV -j zone_wan_prerouting

iptables -t nat -A PREROUTING -i $TUNDEV -j zone_wan_prerouting

iptables -t nat -A POSTROUTING -o $LANDEV -j zone_lan_postrouting

iptables -t nat -A POSTROUTING -o $WAN6DEV -j zone_wan_postrouting

iptables -t nat -A POSTROUTING -o $TUNDEV -j zone_wan_postrouting

Author

Title

Language

Your paste - Paste your paste here

units=63

IP4='IPV4ｱﾄﾞﾚｽ'
PSID='MAP-E_PSID'
LANDEV='LANｲﾝﾀｰﾌｪｲｽ'
WAN6DEV='WANｲﾝﾀｰﾌｪｲｽ'
TUNDEV='MAP-Eｲﾝﾀｰﾌｪｲｽ'

iptables -t nat -F PREROUTING
iptables -t nat -F OUTPOUT
iptables -t nat -F POSTROUTING

rule=1
while [ $rule -le $units  ] ; do
  mark=`expr $rule + 16`
  pn=`expr $rule - 1`
  portl=`expr $rule \* 1024 + $PSID \* 16`
  portr=`expr $portl + 15`

iptables -t nat -A PREROUTING -p tcp -m statistic --mode nth --every $units --packet $pn -j MARK --set-mark $mark
  iptables -t nat -A OUTPUT -p tcp -m statistic --mode nth --every $units --packet $pn -j MARK --set-mark $mark

iptables -t nat -A POSTROUTING -p icmp -m connlimit --connlimit-daddr --connlimit-upto 16 --connlimit-mask 0 -o $TUNDEV -j SNAT --to $IP4:$portl-$portr
  iptables -t nat -A POSTROUTING -p tcp -o $TUNDEV -m mark --mark $mark -j SNAT --to $IP4:$portl-$portr
  iptables -t nat -A POSTROUTING -p udp -m connlimit --connlimit-daddr --connlimit-upto 16 --connlimit-mask 0 -o $TUNDEV -j SNAT --to $IP4:$portl-$portr

rule=`expr $rule + 1`
done

sleep 5

iptables -t nat -A PREROUTING -i $LANDEV -j zone_lan_prerouting
iptables -t nat -A PREROUTING -i $WAN6DEV -j zone_wan_prerouting
iptables -t nat -A PREROUTING -i $TUNDEV -j zone_wan_prerouting

iptables -t nat -A POSTROUTING -o $LANDEV -j zone_lan_postrouting
iptables -t nat -A POSTROUTING -o $WAN6DEV -j zone_wan_postrouting
iptables -t nat -A POSTROUTING -o $TUNDEV -j zone_wan_postrouting

Private - Private paste aren't shown in recent listings.

Delete After - When should we delete your paste?

Spam protection -

{"html5":"htmlmixed","css":"css","javascript":"javascript","php":"php","python":"python","ruby":"ruby","lua":"text\/x-lua","bash":"text\/x-sh","go":"go","c":"text\/x-csrc","cpp":"text\/x-c++src","diff":"diff","latex":"stex","sql":"sql","xml":"xml","apl":"apl","asterisk":"asterisk","c_loadrunner":"text\/x-csrc","c_mac":"text\/x-csrc","coffeescript":"text\/x-coffeescript","csharp":"text\/x-csharp","d":"d","ecmascript":"javascript","erlang":"erlang","groovy":"text\/x-groovy","haskell":"text\/x-haskell","haxe":"text\/x-haxe","html4strict":"htmlmixed","java":"text\/x-java","java5":"text\/x-java","jquery":"javascript","mirc":"mirc","mysql":"sql","ocaml":"text\/x-ocaml","pascal":"text\/x-pascal","perl":"perl","perl6":"perl","plsql":"sql","properties":"text\/x-properties","q":"text\/x-q","scala":"scala","scheme":"text\/x-scheme","tcl":"text\/x-tcl","vb":"text\/x-vb","verilog":"text\/x-verilog","yaml":"text\/x-yaml","z80":"text\/x-z80"}

Reply to "Untitled"