ordentliches firewall script

[svn42.git] / firewall.conf

diff --git a/firewall.conf b/firewall.conf
new file mode 100644 (file)
index 0000000..ef9d1e3
--- /dev/null
+++ b/firewall.conf
@@ -0,0 +1,19 @@
+#!/bin/bash
+#Firewall Script by Bernhard Tittelbach
+#get's sourced by /etc/init.d/firewall
+
+start_firewall()
+{
+  ip4 -I FORWARD -d $(resolveip -s tv.realraum.at 2>/dev/null || echo 89.106.215.58) -p tcp --syn --dport ! 22 -j REJECT
+
+}
+
+stop_firewall()
+{
+
+  for table in INPUT FORWARD OUTPUT; do
+    ip4 -F $table
+  done
+
+}
+