有没有验证代理的脚本?

niqiu

现在我还写不出来,请指教.

KornLee

在CU上有一个,你看看,根据自己的实践适当修改修改!
脚本firewall如下：

2. #! /bin/sh
4. IPTABLES=/sbin/iptables
5. EXTERNAL="eth0"
6. INTERNAL="eth1"
7. IP=10.36.6.0.0/255.255.0.0
10. $IPTABLES -P INPUT ACCEPT
11. $IPTABLES -P FORWARD ACCEPT
12. $IPTABLES -P OUTPUT ACCEPT
14. $IPTABLES -t nat -P PREROUTING ACCEPT
15. $IPTABLES -t nat -P POSTROUTING ACCEPT
16. $IPTABLES -t nat -P OUTPUT ACCEPT
18. $IPTABLES -F
19. $IPTABLES -t nat -F
22. $IPTABLES -X
23. $IPTABLES -t nat -X
25. start() {
26. echo -n $"Starting firewall "
27. # Enable IPV4 Packet Forwarding
28. echo 1 > /proc/sys/net/ipv4/ip_forward
29. for i in /lib/modules/`uname -r`/kernel/net/ipv4/netfilter/*
30. do
31. t=`echo $i |sed 's/\.o$//g'`
32. module=`basename $t`
33. modprobe $module
34. done
35. #
36. #允许ICMP数据包(ping)
37. $IPTABLES -A INPUT -p icmp -j ACCEPT
39. #允许内部网之间的数据通讯
41. $IPTABLES -A INPUT -i $INTERNAL -s $PRINET -j ACCEPT
42. $IPTABLES -A OUTPUT -o $INTERNAL -d $PRINET -j ACCEPT
43. echo "Input and output Sucess"
46. $IPTABLES -t nat -A POSTROUTING -o $EXTERNAL -j MASQUERADE
47. echo_success
48. }
51. stop(){
52. echo -n $"Stopping Firewall"
54. flush
56. for i in /lib/modules/`uname -r`/kernel/net/ipv4/netfilter/*
57. do
58. t=`echo $i |sed 's/\.o$//g'`
59. module=`basename $t`
60. modprobe -r $module
61. done
63. # Disale IPV4 Packet Forwarding
64. echo "0" > /proc/sys/net/ipv4/ip_forward
65. echo_success
66. }
68. restart()
69. {
70. stop
71. start
72. }
74. # See how we were called.
75. case "$1" in
76. start)
77. start
78. ;;
79. stop)
80. stop
81. ;;
82. restart)
83. restart
84. ;;
85. *)
86. echo $"Usage: $0 {start|stop|restart}"
87. exit 1
88. esac

复制代码