Firewall Scripts

`open_port.sh`

Opens a new port on the host server

#!/bin/bash

if [[ $# -ne 2 ]]; then
    echo "Usage: $0 <PORT> <DestIp>"
    exit 1
fi

port="$1"
server="$2"

iptables -t nat -A PREROUTING -p tcp -d 136.243.40.234 --dport "$port" -i vmbr0 -j DNAT --to-destination "$server:$port"
./save_iptables.sh
iptables -t nat -A PREROUTING -p udp -d 136.243.40.234 --dport "$port" -i vmbr0 -j DNAT --to-destination "$server:$port"
./save_iptables.sh

`close_port.sh`

Closes a port on the host server

#!/bin/bash

if [[ $# -ne 2 ]]; then
    echo "Usage: $0 <PORT> <DestIp>"
    exit 1
fi

port="$1"
server="$2"

iptables -t nat -D PREROUTING -p tcp -d 136.243.40.234 --dport "$port" -i vmbr0 -j DNAT --to-destination "$server:$port"
./save_iptables.sh
iptables -t nat -D PREROUTING -p udp -d 136.243.40.234 --dport "$port" -i vmbr0 -j DNAT --to-destination "$server:$port"
./save_iptables.sh

`save_rules.sh`

Saves the iptables rules

sudo iptables-save > /etc/iptables/rules.v4

`show_rules.sh`

Print all iptables rules

cat /etc/iptables/rules.v4

`load_rules.sh`

Loads the iptables rules into the rules file if it was corrupeted.

iptables-restore < /etc/iptables/rules.v4

`edit_rules.sh`

Opens nano text editor to manually edit iptables rules.

sudo nano /etc/iptables/rules.v4

`list_rules.sh`

Lists all iptables rules.

iptables -L -n -t nat

open_port.sh​

close_port.sh​

save_rules.sh​

show_rules.sh​

load_rules.sh​

edit_rules.sh​

list_rules.sh​