add gateway script
This commit is contained in:
parent
a43f4aea0a
commit
a790ca3fc8
36
gw.sh
Executable file
36
gw.sh
Executable file
@ -0,0 +1,36 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
. driglibash-base
|
||||||
|
|
||||||
|
if [ "$#" -ne 2 ] ; then
|
||||||
|
yell "Missing 2 parameters"
|
||||||
|
die "Usage: $0 <local_iface> <net_iface>"
|
||||||
|
fi
|
||||||
|
|
||||||
|
root_or_die
|
||||||
|
|
||||||
|
local_iface="$1"
|
||||||
|
net_iface="$2"
|
||||||
|
|
||||||
|
run sysctl net.ipv4.ip_forward=1
|
||||||
|
clean "sysctl net.ipv4.ip_forward=1"
|
||||||
|
|
||||||
|
run nmcli device set "$local_iface" managed no
|
||||||
|
clean "nmcli device set "$local_iface" managed yes"
|
||||||
|
|
||||||
|
run ip a add 192.168.238.254/24 dev "$local_iface"
|
||||||
|
clean "ip a del 192.168.238.254/24 dev $local_iface"
|
||||||
|
|
||||||
|
# For dhcp offers
|
||||||
|
run iptables -A OUTPUT -d 255.255.255.255/32 -j ACCEPT
|
||||||
|
|
||||||
|
run iptables -A OUTPUT -d 192.168.238.0/24 -j ACCEPT
|
||||||
|
run iptables -A INPUT -s 192.168.238.0/24 -j ACCEPT
|
||||||
|
run iptables -A INPUT -s 255.255.255.255 -j ACCEPT
|
||||||
|
run iptables -A INPUT -i "$local_iface" -j ACCEPT
|
||||||
|
|
||||||
|
run iptables -t nat -A POSTROUTING -o "$net_iface" -j MASQUERADE
|
||||||
|
run iptables -A FORWARD -i $net_iface -o $local_iface -m state --state RELATED,ESTABLISHED -j ACCEPT
|
||||||
|
run iptables -A FORWARD -i $local_iface -o $net_iface -j ACCEPT
|
||||||
|
run dnsmasq --dhcp-range=192.168.238.100,192.168.238.199,10m -d --server=9.9.9.9
|
||||||
|
|
||||||
|
clean
|
||||||
Loading…
Reference in New Issue
Block a user