From 2203c30ba67e2190fb756fdbd2ecc637f3ba9411 Mon Sep 17 00:00:00 2001 From: Neale Pickett Date: Fri, 29 Jul 2011 20:19:13 -0600 Subject: [PATCH] add fish forwarder --- packages/router/service/fish-forward/run | 3 +++ packages/router/service/router/run | 8 ++++---- 2 files changed, 7 insertions(+), 4 deletions(-) create mode 100755 packages/router/service/fish-forward/run diff --git a/packages/router/service/fish-forward/run b/packages/router/service/fish-forward/run new file mode 100755 index 0000000..413c81d --- /dev/null +++ b/packages/router/service/fish-forward/run @@ -0,0 +1,3 @@ +#! /bin/sh + +exec socat -u udp-listen:27844 udp-datagram:172.16.24.255:27844,broadcast diff --git a/packages/router/service/router/run b/packages/router/service/router/run index dd1631f..ae41920 100755 --- a/packages/router/service/router/run +++ b/packages/router/service/router/run @@ -27,22 +27,22 @@ echo 4096 > /proc/sys/net/ipv4/neigh/default/gc_thresh2 # No label: dnsmasq can't cope ip addr add 172.16.0.1/24 dev eth0 +ip addr add 172.30.73.1/24 dev eth0 ip link set eth0 up for i in $(seq 24); do ip link add link eth0 name eth0.$i type vlan id $i - ip addr add 172.16.$i.0/24 dev eth0.$i + ip addr add 172.16.$i.1/24 dev eth0.$i ip link set eth0.$i up done -iptables -P INPUT ACCEPT iptables -P OUTPUT ACCEPT iptables -P FORWARD ACCEPT iptables -A INPUT -p udp --dport 53 -j ACCEPT iptables -A INPUT -p udp --dport 67:68 -j ACCEPT iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT -iptables -A INPUT -s 172.16.0.0/16 -j ACCEPT -iptables -A INPUT -j REJECT +iptables -A INPUT -s 172.16.0.0/12 -j ACCEPT +iptables -P INPUT DROP sleep 8100d