Добавить в корзинуПозвонить
Найти в Дзене
IT-Support

Bash-script для firewall

6
~1 мин
mkdir /opt/script touch /opt/script/script.sh chmod +x /opt/script/script.sh nano /opt/script/script.sh #!/bin/bash firewall-cmd --set-default-zone=trusted firewall-cmd --runtime-to-permanent firewall-cmd --zone=trusted --add-protocol=ospf firewall-cmd --zone=trusted --add-protocol=icmp firewall-cmd --zone=trusted --add-service=ssh firewall-cmd --zone=trusted --add-service=dns firewall-cmd --zone=trusted --add-service=http firewall-cmd --zone=trusted --add-service=https firewall-cmd --zone=trusted --add-service=dns firewall-cmd --zone=trusted --add-port=12345/udp firewall-cmd --zone=trusted --add-port=12345/tcp firewall-cmd --add-forward-port=port=22:proto=tcp:toport=2222:toaddr=192.168.1.2 firewall-cmd --runtime-to-permanent Добавление скрипта в автозагрузку:

mkdir /opt/script

touch /opt/script/script.sh

chmod +x /opt/script/script.sh

nano /opt/script/script.sh

#!/bin/bash

firewall-cmd --set-default-zone=trusted

firewall-cmd --runtime-to-permanent

firewall-cmd --zone=trusted --add-protocol=ospf

firewall-cmd --zone=trusted --add-protocol=icmp

firewall-cmd --zone=trusted --add-service=ssh

firewall-cmd --zone=trusted --add-service=dns

firewall-cmd --zone=trusted --add-service=http

firewall-cmd --zone=trusted --add-service=https

firewall-cmd --zone=trusted --add-service=dns

firewall-cmd --zone=trusted --add-port=12345/udp

firewall-cmd --zone=trusted --add-port=12345/tcp

firewall-cmd --add-forward-port=port=22:proto=tcp:toport=2222:toaddr=192.168.1.2

firewall-cmd --runtime-to-permanent

Добавление скрипта в автозагрузку: