วันอังคารที่ 10 พฤษภาคม พ.ศ. 2554

Scrip Server ( rc.firewall.local )

Scrip Server ( rc.firewall.local )

เริ่มกันด้วย rc.firewall.local

#!/bin/bash
#
# firewall install script
# Description: Firewall script for clarkconnect
# Custom firewall rules.
# This file is executed by the firewall on stop/start/restart.
# Oxygen Netdesign
#------|-------|-----------|-------|--------------|
# PPP | BW | Weight | Sting | Rule
#------|-------|-----------|-------|--------------|
# PPP0 | 4 mb.| Weight 200| NET | Balance Net.
# PPP1 | 4 mb.| Weight 1 | GAME3 | All game.
#------|-------|-----------|-------|--------------|

NET="MULTIWAN_ppp0"
GAME="MULTIWAN_ppp1"
LOCAL=192.168.1.0/24

#GAME SERVER
#ThaicyberGames
#$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m all -d 210.86.0.0/16 -j $GAME

#DotA-Create
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m multiport --sport 6101:6160 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m multiport --sport 6101:6160 -j $GAME

#DotA-Join / DotA-GG Server TCP 7456,8687,8688 UDP 1513,1514/ DotA-TGC TCP 7456,8687,1513
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m multiport --dport 6001:6255,7001:7255,7456,8687:8688 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m multiport --dport 1513:1514,6001:6255,7001:7255 -j $GAME

#-------update 17.11.2008-----------
#Kart Rider
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.69.0/255.255.255.255 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.69.0/255.255.255.255 -j $GAME

#-------update 27.10.2008-----------
#QWorld
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.123.76/255.255.255.255 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.123.77/255.255.255.255 -j $GAME

#-------update 12.10.2008-----------
#Fifa /Redirect Bittorrent to Net line
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.68.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 158.39.49.41/255.255.255.255 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 159.153.186.14/255.255.255.255 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 159.153.186.15/255.255.255.255 -j $GAME

#-------update 05.10.2008-----------
#PVP
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.40.0/255.255.255.0 --dport 6680:6700 -j $GAME

#Nostale
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.121.165.0/255.255.255.0 --dport 4000:4100 -j $GAME

#-------updtae 10/08/2551-----------

#FlyFF Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.195.98.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 203.195.98.0/255.255.255.0 -j $GAME

#Winner IPBonus
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.98/255.255.255.255 -j $GAME

#Redstone IPBonus
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.121.165.196/255.255.255.255 -j $GAME

#-----------------------------------

#BF2
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.57.128.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.57.128.0/255.255.255.0 -j $GAME

$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.142.215.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.142.215.0/255.255.255.0 -j $GAME

#Lineage private
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp --dport 7777 -j $GAME

#Rag All private
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp --dport 6900 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp --dport 5121 -j $GAME

#Asiasoft Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.179.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.244.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.137.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.132.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.227.0/255.255.255.0 -j $GAME

#Lineage2 Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.252.0/255.255.255.0 -j $GAME

#SF/Trickter Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.203.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 61.90.203.0/255.255.255.0 -j $GAME

#Getamp/Acana Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 210.86.180.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 210.86.180.0/255.255.255.0 -j $GAME

#Talerunner Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.113.10.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 203.113.10.0/255.255.255.0 -j $GAME

#WMO/SDO/Pirate King Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.0/255.255.255.0 -j $GAME

#Pangya/Fantatenis Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 58.64.24.0/255.255.255.0 -j $GAME

#Laghaim Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.198.0/255.255.255.0 -j $GAME

#Ran Online Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.142.207.0/255.255.255.0 -j $GAME

#Dark Story Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.6.0/255.255.255.0 -j $GAME

#Khan Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 221.128.124.0/255.255.255.0 -j $GAME

#Dream Of Mirror Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.19.242.0/255.255.255.0 -j $GAME

#ECO Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.127.0/255.255.255.0 -j $GAME

#Project One Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.19.248.0/255.255.255.0 -j $GAME

#Huang Ey/3Kingdom/Seal Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.39.0/255.255.255.0 -j $GAME

#Perfectworld Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.123.0/255.255.255.0 -j $GAME

#Luna Online Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.34.0/255.255.255.0 -j $GAME

#GHOST Online Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.130.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 203.144.130.0/255.255.255.0 -j $GAME

#16pound Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.40.0/255.255.255.0 -j $GAME

#C.S. Game Server / Secret Game Server / wonderland Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.33.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.34.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.34.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.35.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.35.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.36.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.36.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.37.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.37.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.38.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.38.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.39.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.39.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.40.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.40.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.41.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.41.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.42.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.42.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.43.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.43.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.44.0/255.255.255.0 -j $GAME
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -m udp -d 202.43.44.0/255.255.255.0 -j $GAME

#Hipstreet Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 58.97.46.0/255.255.255.0 -j $GAME

#Pucca Game Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 58.64.28.0/255.255.255.0 -j $GAME



#PATCH SERVER
#Cabal Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.132.123/255.255.255.255 -j $NET

#Asiasoft Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.132.11/255.255.255.255 -j $NET

#Asiasoft Manual Patch
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.132.5/255.255.255.255 -j $NET

#TS Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.137.5/255.255.255.255 -j $NET

#Lineage2 Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.199.6/255.255.255.255 -j $NET

#SF/Trickter Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.203.90/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.203.244/255.255.255.255 -j $NET

#Getamp/Acana Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 210.86.180.148/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 210.86.180.140/255.255.255.255 -j $NET

#WMO/SDO/Pirate King Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.116/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.33/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.54/255.255.255.255 -j $NET

#Pangya/Fantatenis Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.195.98.6/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 58.64.24.151/255.255.255.255 -j $NET

#Lagheim Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.198.77/255.255.255.255 -j $NET

#Ran Online Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.142.207.240/255.255.255.255 -j $NET

#Tale runner Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.113.10.20/255.255.255.255 -j $NET

#Dark Story Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.6.131/255.255.255.255 -j $NET

#Khan Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 221.128.124.90/255.255.255.255 -j $NET

#Dream of Mirror Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.19.242.158/255.255.255.255 -j $NET

#ECO Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.91.127.85/255.255.255.255 -j $NET

#3 Kingdoms/Seal Online/Huang Ey Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.39.88/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.39.115/255.255.255.255 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.47.39.116/255.255.255.255 -j $NET

#Project One Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.19.248.234/255.255.255.255 -j $NET

#Flyff Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.195.98.21/255.255.255.255 -j $NET

#lastchaos Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.198.122/255.255.255.255 -j $NET

#C.S.Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.122/255.255.255.255 -j $NET

#Secret Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.60/255.255.255.255 -j $NET

#wonderland Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.43.33.156/255.255.255.255 -j $NET

#Hipstreet Patch Server
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 58.97.46.241/255.255.255.255 -j $NET

#Ftp Frox & etc
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m multiport --dport 20,21,80,2009 -j $NET

#Cabal Shop
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.144.132.140/255.255.255.255 -j $GAME

#playplus
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.252.74/255.255.255.255 -j $GAME

#playplus
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.90.252.75/255.255.255.255 -j $GAME

#-------ADSL Speed Test / update 27.10.2008-----------

#Speed Test / PPP0 /maxnet.co.th/speedtest
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 202.69.137.180/255.255.255.255 -j $NET

#Speed Test / PPP1 /speedtest.bcoms.net
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 61.19.248.87/255.255.255.255 -j $GAME

#Speed Test / PPP2 /speedtest.kapook.com
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.150.225.166/255.255.255.255 -j $GAME1

#Speed Test / PPP3 /speedtest.adslthailand.com
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.107.132.134/255.255.255.255 -j $GAME

#Speed Test / PPP4 /speedtest.pantip.com
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -m tcp -d 203.151.206.227/255.255.255.255 -j $GAME
#--------

#Droping bit on All interface/Bypass to net
$IPTABLES -t filter -I FORWARD -m ipp2p --bit -j DROP
#$IPTABLES -t mangle -I MULTIWAN_MARK -m ipp2p --bit -j $NET

#PATCH CSO to 3128
$IPTABLES -t nat -A PREROUTING -i $LOCAL -d 202.43.33.122 -p tcp --dport 9898 -j REDIRECT --to-port 3128
$IPTABLES -t nat -A OUTPUT -p tcp -d 202.43.33.122 --dport 80 -j DNAT --to 202.43.33.122:9898

#PATCH L Tricksterpatch redirect from 2009,5977 to 3128
$IPTABLES -t nat -D PREROUTING -p tcp -m multiport --dport 5977 -j REDIRECT --to-port 3128
$IPTABLES -t nat -A PREROUTING -p tcp -m multiport --dport 5977 -j REDIRECT --to-port 3128

# Dns
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p tcp -d tcp --destination-port 53 -j $NET
$IPTABLES -t mangle -A MULTIWAN_MARK -s $LOCAL -p udp -d tcp --destination-port 53 -j $NET

if [ -f /var/run/frox.pid ]; then
$IPTABLES -t nat -D PREROUTING -p tcp -m multiport --dport 21,8021 -j REDIRECT --to-port 2121
$IPTABLES -t nat -A PREROUTING -p tcp -m multiport --dport 21,8021 -j REDIRECT --to-port 2121
fi

ไม่มีความคิดเห็น:

แสดงความคิดเห็น