wok-6.x annotate mirror-tools/stuff/host/install @ rev 5973
mirror-tools: add host scripts
| author | Pascal Bellard <pascal.bellard@slitaz.org> |
|---|---|
| date | Sun Aug 08 19:48:39 2010 +0200 (2010-08-08) |
| parents | |
| children |
| rev | line source |
|---|---|
| pascal@5973 | 1 #!/bin/sh |
| pascal@5973 | 2 |
| pascal@5973 | 3 grep -qs lguest-slitaz /etc/inittab || { |
| pascal@5973 | 4 sed -i 's|^tty1::|tty16::respawn:/boot/lguest-slitaz tty16 /boot/guests/mirror.slitaz.org 192.168.0.1\n&|' /etc/inittab |
| pascal@5973 | 5 cat >> /etc/init.d/local.sh <<EOT |
| pascal@5973 | 6 . /etc/network.conf |
| pascal@5973 | 7 iptables -t nat -A POSTROUTING -o $INTERFACE -j MASQUERADE |
| pascal@5973 | 8 for port in 22 873 ; do |
| pascal@5973 | 9 iptables -t nat -A PREROUTING -i $INTERFACE --dport $port \ |
| pascal@5973 | 10 -j DNAT --to-destination 192.168.0.6:$port |
| pascal@5973 | 11 done |
| pascal@5973 | 12 for port in 80 443 ; do |
| pascal@5973 | 13 iptables -A INPUT -p tcp -m tcp --dport $port -j ACCEPT |
| pascal@5973 | 14 done |
| pascal@5973 | 15 for iface in tap+ ; do |
| pascal@5973 | 16 iptables -A INPUT -i $iface -j ACCEPT |
| pascal@5973 | 17 iptables -A OUTPUT -o $iface -j ACCEPT |
| pascal@5973 | 18 iptables -A FORWARD -i $iface -m state \ |
| pascal@5973 | 19 --state NEW,RELATED,ESTABLISHED,UNTRACKED -j ACCEPT |
| pascal@5973 | 20 iptables -A FORWARD -o $iface -m state \ |
| pascal@5973 | 21 --state NEW,RELATED,ESTABLISHED,UNTRACKED -j ACCEPT |
| pascal@5973 | 22 done |
| pascal@5973 | 23 echo "1" > /proc/sys/net/ipv4/ip_forward |
| pascal@5973 | 24 EOT |
| pascal@5973 | 25 } |