chunyu/sing-box-shell
1
0
Fork 0
mirror of https://github.com/Lsmoisu/sing-box-shell.git synced 2025-06-08 12:34:12 +08:00
Code Issues Packages Projects Releases Wiki Activity

防火墙配置优化

Browse Source
This commit is contained in:
chunyu 2025-03-10 11:01:20 +08:00
parent 4a3b00dea5
commit 302246d3ac
1 changed files with 0 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
install.sh
View File

@ -404,8 +404,6 @@ table inet filter {
iifname "lo" accept iifname "lo" accept
ct state established,related accept ct state established,related accept
ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16 } accept ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16 } accept
tcp dport 22 accept
udp dport 53 accept
} }
chain forward { chain forward {
type filter hook forward priority 0; policy accept; type filter hook forward priority 0; policy accept;
@ -429,8 +427,6 @@ EOF
iptables -A INPUT -s 10.0.0.0/8 -j ACCEPT iptables -A INPUT -s 10.0.0.0/8 -j ACCEPT
iptables -A INPUT -s 172.16.0.0/12 -j ACCEPT iptables -A INPUT -s 172.16.0.0/12 -j ACCEPT
iptables -A INPUT -s 192.168.0.0/16 -j ACCEPT iptables -A INPUT -s 192.168.0.0/16 -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -j ACCEPT
iptables -A INPUT -p udp --dport 53 -j ACCEPT
iptables -A FORWARD -i "$INTERFACE" -j ACCEPT iptables -A FORWARD -i "$INTERFACE" -j ACCEPT
iptables -t nat -A POSTROUTING -o "$INTERFACE" -j MASQUERADE iptables -t nat -A POSTROUTING -o "$INTERFACE" -j MASQUERADE