2 way downlink uplink conf

[[email protected] root]# iptables-save
# Generated by iptables-save v1.2.3 on Fri Nov 11 23:44:29 2005
*nat
:PREROUTING ACCEPT [2187862:160340692]
:POSTROUTING ACCEPT [2055830:143406338]
:OUTPUT ACCEPT [232:17698]
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 200.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 220.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211

-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 200.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 216.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -j SNAT –to-source 69.88.24.34
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 200.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 220.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 200.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -d 216.0.0.0/252.0.0.0 -j SNAT –to-source 202.152.55.211
-A POSTROUTING -s 192.168.2.0/255.255.255.0 -j SNAT –to-source 69.88.24.34
COMMIT
# Completed on Fri Nov 11 23:44:29 2005
[[email protected] root]#
[[email protected] root]# ip addr
1: lo: mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
2: eth0: mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:00:0e:b8:bd:aa brd ff:ff:ff:ff:ff:ff
inet 202.152.55.211/29 brd 202.152.55.215 scope global eth0:0
inet 192.168.2.222/24 brd 192.168.2.255 scope global eth0:1
inet 69.88.24.34/29 brd 69.88.24.39 scope global eth0
3: aba_0: mtu 1500 qdisc noqueue
link/ether 00:d0:72:01:42:0a brd ff:ff:ff:ff:ff:ff
inet 10.2.0.1/24 brd 10.255.255.255 scope global aba_0
[[email protected] root]#
[[email protected] root]# ip r
202.152.55.208/29 dev eth0 proto kernel scope link src 202.152.55.211
69.88.24.32/29 dev eth0 scope link
10.2.0.0/24 dev aba_0 proto kernel scope link src 10.2.0.1
192.168.2.0/24 dev eth0 proto kernel scope link src 192.168.2.222
127.0.0.0/8 dev lo scope link
default via 202.152.55.209 dev eth0
[[email protected] root]#
[[email protected] root]# netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
202.152.55.208 0.0.0.0 255.255.255.248 U 40 0 0 eth0
69.88.24.32 0.0.0.0 255.255.255.248 U 40 0 0 eth0
10.2.0.0 0.0.0.0 255.255.255.0 U 40 0 0 aba_0
192.168.2.0 0.0.0.0 255.255.255.0 U 40 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 40 0 0 lo
0.0.0.0 202.152.55.209 0.0.0.0 UG 40 0 0 eth0
[[email protected] root]#
[[email protected] root]# cat /etc/resolv.conf
nameserver 202.152.0.2
nameserver 168.215.210.50
nameserver 207.170.210.16
[[email protected] root]#
[[email protected] root]# cat /etc/rc.d/rc.local
#!/bin/sh
#
# This script will be executed *after* all the other init scripts.
# You can put your own initialization stuff in here if you don’t
# want to do the full Sys V style init stuff.
#!/bin/sh
#
# This script will be executed *after* all the other init scripts.
# You can put your own initialization stuff in here if you don’t
# want to do the full Sys V style init stuff.###ini utk dvb
################
#ip route add 69.88.24.33 via 202.152.55.210
route add default gw 202.152.55.209
# touch /var/lock/subsys/local
#arahkan situs dalam ke LA
iptables -t nat -A POSTROUTING -s 192.168.2.200/24 -d 202.0.0.0/6 -j SNAT –to 202.152.55.211
iptables -t nat -A POSTROUTING -s 192.168.2.200/24 -d 222.0.0.0/6 -j SNAT –to 202.152.55.211
iptables -t nat -A POSTROUTING -s 192.168.2.200/24 -d 203.0.0.0/6 -j SNAT –to 202.152.55.211
iptables -t nat -A POSTROUTING -s 192.168.2.200/24 -d 219.0.0.0/6 -j SNAT –to 202.152.55.211
iptables -t nat -A POSTROUTING -s 192.168.2.0/24 -d 0.0.0.0/0 -j SNAT –to 69.88.24.34

#modprobe ipt_LOG
#modprobe ipt_REJECT
#modprobe ipt_MASQUERADE

#/sbin/depmod -a

#echo “1” > /proc/sys/net/ipv4/ip_forward

#iptables -F
#iptables -t nat -F

#iptables -X
#iptables -t nat -X

##iptables NEW
#iptables -t nat -A POSTROUTING -d 202.0.0.0/255.0.0.0 -p tcp -m tcp –dport 80 -j SNAT –to-source 202.152.55.210
#iptables -t nat -A POSTROUTING -d 203.130.0.0/255.255.0.0 -p tcp -m tcp –dport 80 -j SNAT –to-source 202.152.55.210
#iptables -t nat -A POSTROUTING -d 203.134.0.0/255.255.0.0 -p tcp -m tcp –dport 80 -j SNAT –to-source 202.152.55.210
#iptables -t nat -A POSTROUTING -d 61.94.0.0/255.255.0.0 -p tcp -m tcp –dport 80 -j SNAT –to-source 202.152.55.210
#iptables -t nat -A POSTROUTING -d 61.5.0.0/255.255.0.0 -p tcp -m tcp –dport 80 -j SNAT –to-source 202.152.55.210
#iptables -t nat -A POSTROUTING -p tcp -m tcp –dport 6000:7000 -j SNAT –to-source 202.152.55.211
#iptables -t nat -A POSTROUTING -p tcp -m tcp –dport 80 -j SNAT –to-source 69.88.3.241
#iptables -t nat -A POSTROUTING -s 0.0.0.0/0 -d 0.0.0.0/0 -j MASQUERADE

##routing web local
#iptables -t nat -A POSTROUTING -d 202.0.0.0/8 -j SNAT –to 202.152.55.210

##routing web luar
#iptables -t nat -A POSTROUTING -d 203.130.242.0/24 -j SNAT –to 202.152.55.210

###routing irc
#iptables -t nat -A POSTROUTING -p tcp –dport 6667 -j SNAT –to 69.88.3.243
#iptables -t nat -A POSTROUTING -j SNAT –to 69.88.3.241

##cakrawala HPT
#iptables -t nat -A POSTROUTING -d 202.0.0.0/8 -j SNAT –to 202.152.55.210
#iptables -t nat -A POSTROUTING -p tcp –dport 6667 -j SNAT –to 69.88.3.241

##digital
#iptables -t nat -A POSTROUTING -s 192.168.2.34 -o eth0 -p tcp -j SNAT –to 202.174.154.103
#iptables -t nat -A POSTROUTING -s 192.168.2.34 -o eth0 -p udp -j SNAT –to 202.174.154.103
#iptables -t nat -A POSTROUTING -s 192.168.2.34 -o eth0 -d 0/0 -j MASQUERADE

# buka port
#iptables -A INPUT -j ACCEPT -p tcp –dport 80
#iptables -A INPUT -j ACCEPT -p tcp –dport 21
#iptables -A INPUT -j ACCEPT -p tcp –dport 110
#iptables -A INPUT -j ACCEPT -p tcp –dport 25
#iptables -A INPUT -j ACCEPT -p tcp –dport 22

####traffic shapping
#/etc/rc.d/cbq start

#touch /var/lock/subsys/local

#touch /var/lock/subsys/local
[[email protected] root]#
[[email protected] root]# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 1412 52 ? S Nov04 0:03 init [3]
root 2 0.0 0.0 0 0 ? SW Nov04 0:00 [keventd]
root 3 0.0 0.0 0 0 ? SW Nov04 0:00 [kapm-idled]
root 4 0.0 0.0 0 0 ? SWN Nov04 0:00 [ksoftirqd_CPU0]
root 5 0.0 0.0 0 0 ? SW Nov04 0:01 [kswapd]
root 6 0.0 0.0 0 0 ? SW Nov04 0:00 [kreclaimd]
root 7 0.0 0.0 0 0 ? SW Nov04 0:00 [bdflush]
root 8 0.0 0.0 0 0 ? SW Nov04 0:00 [kupdated]
root 9 0.0 0.0 0 0 ? SW< Nov04 0:00 [mdrecoveryd]
root 13 0.0 0.0 0 0 ? SW Nov04 0:05 [kjournald]
root 99 0.0 0.0 0 0 ? SW Nov04 0:00 [khubd]
root 581 0.0 0.2 1696 160 ? S Nov04 0:05 syslogd -m 0
root 586 0.0 0.0 2108 0 ? SW Nov04 0:00 klogd -2
rpc 607 0.0 0.0 1548 0 ? SW Nov04 0:00 portmap
root 718 0.0 0.0 4272 0 ? SW Nov04 0:00 /usr/sbin/snmpd –
root 736 0.0 0.4 2676 296 ? S Nov04 0:52 /usr/sbin/sshd
root 769 0.0 0.0 2264 0 ? SW Nov04 0:00 xinetd -stayalive
root 787 0.0 0.1 1584 108 ? S Nov04 0:00 crond
root 865 0.0 0.1 18148 120 ? S Nov04 0:00 /usr/local/bin/ab
root 866 0.0 0.1 18148 124 ? S Nov04 0:00 /usr/local/bin/ab
root 867 0.0 0.1 18148 124 ? S Nov04 0:00 /usr/local/bin/ab
root 868 0.0 0.1 18148 124 ? S Nov04 0:00 /usr/local/bin/ab
root 898 0.0 0.0 1384 0 tty2 SW Nov04 0:00 /sbin/mingetty tt
root 899 0.0 0.0 1384 0 tty3 SW Nov04 0:00 /sbin/mingetty tt
root 900 0.0 0.0 1384 0 tty4 SW Nov04 0:00 /sbin/mingetty tt
root 901 0.0 0.0 1384 0 tty5 SW Nov04 0:00 /sbin/mingetty tt
root 902 0.0 0.0 1384 0 tty6 SW Nov04 0:00 /sbin/mingetty tt
root 2286 0.0 0.0 1384 0 tty1 SW Nov04 0:00 /sbin/mingetty tt
root 18668 0.0 2.8 3536 1748 ? S Nov11 0:00 /usr/sbin/sshd
root 18669 0.0 2.1 2520 1360 pts/0 S Nov11 0:00 -bash
root 18729 0.0 1.1 2636 724 pts/0 R 00:03 0:00 ps aux
[[email protected] root]#

Leave a comment

Your email address will not be published.


*