Проблема такая не пускает в инет с внутренней сети
мне кажется что чегото не дописал
подскажите вот скрипт ipfw
#!/bin/sh
localhost="127.0.0.1"
wanip="212.76.10.76"
lanip="192.168.77.1"
waninntf="rl0"
localintf="fxp0"
ppp="ppp0"
fwcmd="/sbin/ipfw"
$fwcmd -f flush
${fwcmd} add pass all from any to any via lo0
${fwcmd} add deny all from any to 127.0.0.0/8
${fwcmd} add deny ip from 127.0.0.0/8 to any
${fwcmd} add deny ip from 192.168.0.0/16 to any in via ${waninntf}
${fwcmd} add deny ip from 172.16.0.0/12 to any in via ${waninntf}
${fwcmd} add deny ip from 10.0.0.0/8 to any in via ${waninntf}
${fwcmd} add pass udp from me to any 123 keep-state
${fwcmd} add divert natd ip from any to any out via ${waninntf}
${fwcmd} add divert natd ip from any to 212.76.10.162 in via ${waninntf}
${fwcmd} add pass tcp from any to any established
${fwcmd} add pass all from any to any out xmit ${wanip}
${fwcmd} add pass tcp from any to any in recv ${wanip} established
${fwcmd} add deny tcp from any to any 20,21,22,23,3128 in via ${waninntf}
${fwcmd} add pass all from 192.168.0.0:255.255.0.0 to 192.168.0.0:255.255.0.0 via ${localintf}
${fwcmd} add pass tcp from any to ${wanip} 22
${fwcmd} add pass tcp from any to ${lanip} 22
${fwcmd} add pass tcp from any 53 to me
${fwcmd} add pass udp from any 53 to me
${fwcmd} add pass tcp from any to me 53
${fwcmd} add pass udp from any to me 53
${fwcmd} add pass icmp from any to any in recv ${wanip} icmptypes 0
${fwcmd} add pass icmp from any to any out xmit ${wanip} icmptypes 8
${fwcmd} add pass icmp from any to any in recv ${wanip} icmptypes 3
${fwcmd} add pass icmp from any to any in recv ${wanip} icmptypes 11
Вариант для распечатки
Информационная безопасность (Public)
(??) on 16-Янв-07, 11:41 
