#!/bin/sh
/sbin/iptables -F CUSTOMFORWARD
/sbin/iptables -F CUSTOMINPUT
#
RED_IF=`/bin/cat /var/ipcop/red/iface | /usr/bin/tr -d ‘\012’`
# this is to block outgoing
#/sbin/iptables -A CUSTOMFORWARD -p tcp -s 192.168.xx.12/32 –dport 80 -j DROP
/sbin/iptables -A CUSTOMFORWARD -p tcp -s 192.168.xx.0/24 –dport 135 -j DROP
/sbin/iptables -A CUSTOMFORWARD -p tcp -s 192.168.xx.0/24 –dport 137 -j DROP
#/sbin/iptables -A CUSTOMFORWARD -p tcp -s 192.168.xx.251 –dport 6881 -j DROP
/sbin/iptables -A CUSTOMFORWARD -p tcp -s 192.168.xx.250 –dport 80 -j drop
#
# this is to block incoming ip addresses
#/sbin/iptables -A CUSTOMINPUT -i $RED_IF -s 192.168.1.1/32 -j REJECT
/sbin/iptables -A CUSTOMINPUT -i $RED_IF -s 68.23.92.65/27 -j DROP
#/sbin/iptables -A CUSTOMINPUT -i $RED_IF -p tcp -s 216.93.104.10/16 –dport 25 -j DROP
/sbin/iptables -A CUSTOMINPUT -i $RED_IF -p icmp -j DROP
ipcop rc.local
6
Aug