De ASIRodeira
Introducción
Debian Live
Ferramentas de Interese e Ferramentas necesarias
Necesarias
De Interese
Preparación do Sistema: Carga da Configuración o Inicio
Esquema de Rede e Rutado
#!/bin/sh
# ip_forwarding
echo "1" > /proc/sys/net/ipv4/ip_forward
# DNS
#echo "nameserver 69.50.2.190" > /etc/resolv.conf
#echo "nameserver 69.50.2.180" > /etc/resolv.conf
# Interface Docencia
ifconfig eth3 172.25.0.1
# Interface Auxiliar
ifconfig eth0 172.20.0.1
# Bridge Wireless
ifconfig eth2 0.0.0.0
ifconfig eth1 0.0.0.0
brctl addbr br0
brctl addif br0 eth2
brctl addif br0 eth1
brctl stp br0 off
ifconfig br0 69.55.97.40 netmask 255.255.255.0
route add default gw 69.55.97.1 dev br0
# NAT docencia
iptables -t nat -A POSTROUTING -o br0 --source 172.25.0.0/16 -j SNAT --to-source 69.55.97.40
# FireWall Wireless<->Admin (mac router 00:17:97:31:9A:FC)
ebtables -P FORWARD DROP
ebtables -A FORWARD -p ipv4 --ip-src 69.55.97.1 -s ! 00:17:97:31:9A:FC -j DROP
ebtables -A FORWARD -p ipv4 --ip-dst ! 69.55.97.0/24 -i eth1 -j ACCEPT
ebtables -A FORWARD -p ipv4 --ip-src ! 69.55.97.0/24 -i eth2 -j ACCEPT
ebtables -A FORWARD -s 00:17:97:31:9A:FC -j ACCEPT
ebtables -A FORWARD -d 00:17:97:31:9A:FC -j ACCEPT
ebtables -A FORWARD -p ARP -j ACCEPT
ebtables -A FORWARD -d ! 00:17:97:31:9A:FC -o eth2 -j DROP
