Mobile versionCode: Select all
source /etc/network/interfaces.d/*
auto lo
iface lo inet loopback
auto eno0
iface eno0 inet static
address
netmask
gateway
# Enable IP Forwarding
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-down echo 0 > /proc/sys/net/ipv4/ip_forward
# NAT Configuration
post-up iptables -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
post-up iptables -A INPUT -p tcp -m tcp --dport 8006 -j ACCEPT
post-up iptables -A INPUT -s 10.0.0.0/24 -j ACCEPT
post-up iptables -A INPUT -p tcp --dport 32400 -j ACCEPT
post-up iptables -t nat -A PREROUTING -i eno0 -p tcp --dport 32400 -j DNAT --to-destination 10.0.0.2:32400
post-up iptables -t nat -A POSTROUTING -o eno0 -s 10.0.0.0/24 -j SNAT --to-source
post-up iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# Clean up rules on interface down
post-down iptables -D INPUT -p tcp -m tcp --dport 22 -j ACCEPT
post-down iptables -D INPUT -p tcp -m tcp --dport 8006 -j ACCEPT
post-down iptables -D INPUT -s 10.0.0.0/24 -j ACCEPT
post-down iptables -D INPUT -p tcp --dport 32400 -j ACCEPT
post-down iptables -t nat -D PREROUTING -i eno0 -p tcp --dport 32400 -j DNAT --to-destination 10.0.0.2:32400
post-down iptables -t nat -D POSTROUTING -o eno0 -s 10.0.0.0/24 -j SNAT --to-source
post-down iptables -D INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
auto vmbr0
iface vmbr0 inet static
address /27
gateway
bridge-ports eno0
bridge-stp off
bridge-fd 0
auto vmbr1
iface vmbr1 inet static
address 10.0.0.1
netmask 255.255.255.0
bridge-ports none
bridge-stp off
post-up iptables -t nat -A POSTROUTING -s 10.0.0.0/24 -o vmbr0 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s 10.0.0.0/24 -o vmbr0 -j MASQUERADE