User Tools

Site Tools


linux:servers:dvorak

This is an old revision of the document!



  • In the rack, number 2 on the kvm.
  • Local IP: 172.29.0.1
  • dvorak.cs.uic.edu
  • acm-linux.cs-icl.uic.edu
  • is currently doing package routing for the LAN.

Router Configuration

iptables config script for basic sharing setup

#!/bin/bash

ipt="/usr/sbin/iptables"
#Vars
$WAN_IFACE="wan0"
$WAN_IFACE_BAK="wan1"
$SOURCE_IP="131.193.17.26""
$SOURCE_IP_BAK="131.193.35.164"
#Flush active rules and delete custom chains
$ipt -F
$ipt -t nat -F
$ipt -t mangle -F
$ipt -X
$ipt -t nat -X
$ipt -t mangle -X

#Set default policies
$ipt -P INPUT ACCEPT
$ipt -P FORWARD ACCEPT
$ipt -P OUTPUT ACCEPT
$ipt -t nat -P OUTPUT ACCEPT
$ipt -t nat -P PREROUTING ACCEPT
$ipt -t nat -P POSTROUTING ACCEPT
$ipt -t mangle -P PREROUTING ACCEPT
$ipt -t mangle -P POSTROUTING ACCEPT

#loopback sanitity check
$ipt -A INPUT -i lo -j ACCEPT
$ipt -A OUTPUT -o lo -j ACCEPT

#rewrite rule
$ipt -t nat -A POSTROUTING -o $WAN_IFACE -j SNAT --to-source $SOURCE_IP
$ipt -t nat -A POSTROUTING -o $WAN_IFACE_BAK -j SNAT --to-source $SOURCE_IP_BAK

Links

linux/servers/dvorak.1330987645.txt.gz · Last modified: 2021/05/02 21:36 (external edit)