Доста ми е дълъг изхода от iptables-save понеже има и порт редиректи и т.н.
, но няма къде да го кача в момента и се извинявам за flood-а та ето го:
Generated by iptables-save v1.4.0 on Wed Dec 3 15:49:53 2008
*raw
:PREROUTING ACCEPT [166417:145778403]
:OUTPUT ACCEPT [708:95933]
COMMIT
# Completed on Wed Dec 3 15:49:53 2008
# Generated by iptables-save v1.4.0 on Wed Dec 3 15:49:53 2008
*mangle
:PREROUTING ACCEPT [166418:145778455]
:INPUT ACCEPT [616:76817]
:FORWARD ACCEPT [165802:145701638]
:OUTPUT ACCEPT [708:95933]
:POSTROUTING ACCEPT [166279:145762519]
:BG_IN - [0:0]
:BG_OUT - [0:0]
:INT_IN - [0:0]
:INT_OUT - [0:0]
:TRAF_IN - [0:0]
:TRAF_OUT - [0:0]
-A FORWARD -j MARK --set-mark 0x1
-A FORWARD -i eth1 -o eth0 -j TRAF_OUT
-A FORWARD -i eth0 -o eth1 -j TRAF_IN
-A FORWARD -i eth1 -o eth1 -j BG_IN
-A FORWARD -i eth1 -o eth1 -j BG_OUT
-A POSTROUTING -o eth0 -j IMQ --todev 0
-A POSTROUTING -o eth1 -j IMQ --todev 1
-A POSTROUTING -o eth2 -j IMQ --todev 2
-A POSTROUTING -o eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
-A POSTROUTING -o eth1 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
-A POSTROUTING -o eth2 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
-A BG_IN -d 192.168.0.0/24 -j IPMARK --addr=dst --and-mask 0xff --or-mask 0x10500
-A BG_OUT -s 192.168.0.0/24 -j IPMARK --addr=src --and-mask 0xff --or-mask 0x10600
-A INT_IN -d 192.168.0.0/24 -j IPMARK --addr=dst --and-mask 0xff --or-mask 0x10700
-A INT_OUT -s 192.168.0.0/24 -j IPMARK --addr=src --and-mask 0xff --or-mask 0x10800
-A TRAF_IN -m set --set BG_NETS src -j BG_IN
-A TRAF_IN -m mark --mark 0x1 -j INT_IN
-A TRAF_OUT -m set --set BG_NETS dst -j BG_OUT
-A TRAF_OUT -m mark --mark 0x1 -j INT_OUT
COMMIT
# Completed on Wed Dec 3 15:49:53 2008
# Generated by iptables-save v1.4.0 on Wed Dec 3 15:49:53 2008
*nat
:PREROUTING ACCEPT [1903:121283]
:POSTROUTING ACCEPT [142:9368]
:OUTPUT ACCEPT [49:3642]
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45556 -j DNAT --to-destination 192.168.0.2:45556
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45556 -j DNAT --to-destination 192.168.0.2:45556
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35556 -j DNAT --to-destination 192.168.0.2:35556
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35556 -j DNAT --to-destination 192.168.0.2:35556
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45557 -j DNAT --to-destination 192.168.0.42:45557
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45557 -j DNAT --to-destination 192.168.0.42:45557
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35557 -j DNAT --to-destination 192.168.0.42:35557
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35557 -j DNAT --to-destination 192.168.0.42:35557
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45558 -j DNAT --to-destination 192.168.0.4:45558
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45558 -j DNAT --to-destination 192.168.0.4:45558
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35558 -j DNAT --to-destination 192.168.0.4:35558
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35558 -j DNAT --to-destination 192.168.0.4:35558
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45560 -j DNAT --to-destination 192.168.0.7:45560
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45560 -j DNAT --to-destination 192.168.0.7:45560
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35560 -j DNAT --to-destination 192.168.0.7:35560
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35560 -j DNAT --to-destination 192.168.0.7:35560
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45563 -j DNAT --to-destination 192.168.0.11:45563
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45563 -j DNAT --to-destination 192.168.0.11:45563
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35563 -j DNAT --to-destination 192.168.0.11:35563
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35563 -j DNAT --to-destination 192.168.0.11:35563
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45564 -j DNAT --to-destination 192.168.0.12:45564
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45564 -j DNAT --to-destination 192.168.0.12:45564
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35564 -j DNAT --to-destination 192.168.0.12:35564
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35564 -j DNAT --to-destination 192.168.0.12:35564
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45566 -j DNAT --to-destination 192.168.0.14:45566
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45566 -j DNAT --to-destination 192.168.0.14:45566
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35566 -j DNAT --to-destination 192.168.0.14:35566
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35566 -j DNAT --to-destination 192.168.0.14:35566
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 63875 -j DNAT --to-destination 192.168.0.40:63875
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 63875 -j DNAT --to-destination 192.168.0.40:63875
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 1214 -j DNAT --to-destination 192.168.0.40:1214
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 1214 -j DNAT --to-destination 192.168.0.40:1214
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2345 -j DNAT --to-destination 192.168.0.40:5900
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2345 -j DNAT --to-destination 192.168.0.40:5900
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 3334 -j DNAT --to-destination 192.168.0.40:3334
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 3334 -j DNAT --to-destination 192.168.0.40:3334
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 5554 -j DNAT --to-destination 192.168.0.40:5554
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 5554 -j DNAT --to-destination 192.168.0.40:5554
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 8000 -j DNAT --to-destination 192.168.0.40:8000
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 8000 -j DNAT --to-destination 192.168.0.40:8000
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2034 -j DNAT --to-destination 192.168.0.40:2034
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2034 -j DNAT --to-destination 192.168.0.40:2034
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2035 -j DNAT --to-destination 192.168.0.40:2035
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2035 -j DNAT --to-destination 192.168.0.40:2035
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2036 -j DNAT --to-destination 192.168.0.40:2036
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2036 -j DNAT --to-destination 192.168.0.40:2036
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2037 -j DNAT --to-destination 192.168.0.40:2037
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2037 -j DNAT --to-destination 192.168.0.40:2037
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2038 -j DNAT --to-destination 192.168.0.40:2038
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2038 -j DNAT --to-destination 192.168.0.40:2038
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2039 -j DNAT --to-destination 192.168.0.40:2039
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2039 -j DNAT --to-destination 192.168.0.40:2039
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2040 -j DNAT --to-destination 192.168.0.40:2040
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2040 -j DNAT --to-destination 192.168.0.40:2040
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 36827 -j DNAT --to-destination 192.168.0.40:36827
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 36827 -j DNAT --to-destination 192.168.0.40:36827
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45567 -j DNAT --to-destination 192.168.0.15:45567
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45567 -j DNAT --to-destination 192.168.0.15:45567
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35567 -j DNAT --to-destination 192.168.0.15:35567
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35567 -j DNAT --to-destination 192.168.0.15:35567
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45569 -j DNAT --to-destination 192.168.0.17:45569
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45569 -j DNAT --to-destination 192.168.0.17:45569
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35569 -j DNAT --to-destination 192.168.0.17:35569
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35569 -j DNAT --to-destination 192.168.0.17:35569
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45570 -j DNAT --to-destination 192.168.0.19:45570
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45570 -j DNAT --to-destination 192.168.0.19:45570
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35570 -j DNAT --to-destination 192.168.0.19:35570
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35570 -j DNAT --to-destination 192.168.0.19:35570
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45571 -j DNAT --to-destination 192.168.0.20:45571
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45571 -j DNAT --to-destination 192.168.0.20:45571
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35571 -j DNAT --to-destination 192.168.0.20:35571
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35571 -j DNAT --to-destination 192.168.0.20:35571
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45573 -j DNAT --to-destination 192.168.0.23:45573
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45573 -j DNAT --to-destination 192.168.0.23:45573
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35573 -j DNAT --to-destination 192.168.0.23:35573
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35573 -j DNAT --to-destination 192.168.0.23:35573
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45575 -j DNAT --to-destination 192.168.0.25:45575
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45575 -j DNAT --to-destination 192.168.0.25:45575
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35575 -j DNAT --to-destination 192.168.0.25:35575
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35575 -j DNAT --to-destination 192.168.0.25:35575
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45586 -j DNAT --to-destination 192.168.0.27:45586
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45586 -j DNAT --to-destination 192.168.0.27:45586
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35586 -j DNAT --to-destination 192.168.0.27:35586
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35586 -j DNAT --to-destination 192.168.0.27:35586
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45577 -j DNAT --to-destination 192.168.0.28:45577
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45577 -j DNAT --to-destination 192.168.0.28:45577
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35577 -j DNAT --to-destination 192.168.0.28:35577
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35577 -j DNAT --to-destination 192.168.0.28:35577
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45578 -j DNAT --to-destination 192.168.0.29:45578
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45578 -j DNAT --to-destination 192.168.0.29:45578
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35578 -j DNAT --to-destination 192.168.0.29:35578
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35578 -j DNAT --to-destination 192.168.0.29:35578
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45579 -j DNAT --to-destination 192.168.0.34:45579
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45579 -j DNAT --to-destination 192.168.0.34:45579
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35579 -j DNAT --to-destination 192.168.0.34:35579
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35579 -j DNAT --to-destination 192.168.0.34:35579
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45582 -j DNAT --to-destination 192.168.0.39:45582
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45582 -j DNAT --to-destination 192.168.0.39:45582
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35582 -j DNAT --to-destination 192.168.0.39:35582
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35582 -j DNAT --to-destination 192.168.0.39:35582
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2229 -j DNAT --to-destination 192.168.0.39:5900
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 2229 -j DNAT --to-destination 192.168.0.39:5900
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45583 -j DNAT --to-destination 192.168.0.41:45583
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45583 -j DNAT --to-destination 192.168.0.41:45583
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35583 -j DNAT --to-destination 192.168.0.41:35583
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35583 -j DNAT --to-destination 192.168.0.41:35583
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45592 -j DNAT --to-destination 192.168.0.35:45592
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45592 -j DNAT --to-destination 192.168.0.35:45592
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35592 -j DNAT --to-destination 192.168.0.35:35592
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35592 -j DNAT --to-destination 192.168.0.35:35592
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45594 -j DNAT --to-destination 192.168.0.44:45594
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45594 -j DNAT --to-destination 192.168.0.44:45594
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35594 -j DNAT --to-destination 192.168.0.44:35594
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35594 -j DNAT --to-destination 192.168.0.44:35594
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45595 -j DNAT --to-destination 192.168.0.45:45595
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45595 -j DNAT --to-destination 192.168.0.45:45595
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35595 -j DNAT --to-destination 192.168.0.45:35595
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35595 -j DNAT --to-destination 192.168.0.45:35595
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 45596 -j DNAT --to-destination 192.168.0.13:45596
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 45596 -j DNAT --to-destination 192.168.0.13:45596
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 35596 -j DNAT --to-destination 192.168.0.13:35596
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 35596 -j DNAT --to-destination 192.168.0.13:35596
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 1123 -j DNAT --to-destination 192.168.0.3:1123
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 1123 -j DNAT --to-destination 192.168.0.3:1123
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 27015 -j DNAT --to-destination 192.168.0.3:27015
-A PREROUTING -s 10.1.10.2/32 -p udp -m udp --dport 27015 -j DNAT --to-destination 192.168.0.3:27015
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2222 -j DNAT --to-destination 192.168.0.3:22
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2224 -j DNAT --to-destination 192.168.0.3:21
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2225 -j DNAT --to-destination 192.168.0.3:5901
-A PREROUTING -s 10.1.10.2/32 -p tcp -m tcp --dport 2227 -j DNAT --to-destination 192.168.0.3:3333
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45556 -j DNAT --to-destination 192.168.0.2:45556
-A PREROUTING -i eth1 -p udp -m udp --dport 45556 -j DNAT --to-destination 192.168.0.2:45556
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35556 -j DNAT --to-destination 192.168.0.2:35556
-A PREROUTING -i eth1 -p udp -m udp --dport 35556 -j DNAT --to-destination 192.168.0.2:35556
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45557 -j DNAT --to-destination 192.168.0.42:45557
-A PREROUTING -i eth1 -p udp -m udp --dport 45557 -j DNAT --to-destination 192.168.0.42:45557
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35557 -j DNAT --to-destination 192.168.0.42:35557
-A PREROUTING -i eth1 -p udp -m udp --dport 35557 -j DNAT --to-destination 192.168.0.42:35557
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45558 -j DNAT --to-destination 192.168.0.4:45558
-A PREROUTING -i eth1 -p udp -m udp --dport 45558 -j DNAT --to-destination 192.168.0.4:45558
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35558 -j DNAT --to-destination 192.168.0.4:35558
-A PREROUTING -i eth1 -p udp -m udp --dport 35558 -j DNAT --to-destination 192.168.0.4:35558
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45560 -j DNAT --to-destination 192.168.0.7:45560
-A PREROUTING -i eth1 -p udp -m udp --dport 45560 -j DNAT --to-destination 192.168.0.7:45560
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35560 -j DNAT --to-destination 192.168.0.7:35560
-A PREROUTING -i eth1 -p udp -m udp --dport 35560 -j DNAT --to-destination 192.168.0.7:35560
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45563 -j DNAT --to-destination 192.168.0.11:45563
-A PREROUTING -i eth1 -p udp -m udp --dport 45563 -j DNAT --to-destination 192.168.0.11:45563
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35563 -j DNAT --to-destination 192.168.0.11:35563
-A PREROUTING -i eth1 -p udp -m udp --dport 35563 -j DNAT --to-destination 192.168.0.11:35563
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45564 -j DNAT --to-destination 192.168.0.12:45564
-A PREROUTING -i eth1 -p udp -m udp --dport 45564 -j DNAT --to-destination 192.168.0.12:45564
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35564 -j DNAT --to-destination 192.168.0.12:35564
-A PREROUTING -i eth1 -p udp -m udp --dport 35564 -j DNAT --to-destination 192.168.0.12:35564
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45566 -j DNAT --to-destination 192.168.0.14:45566
-A PREROUTING -i eth1 -p udp -m udp --dport 45566 -j DNAT --to-destination 192.168.0.14:45566
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35566 -j DNAT --to-destination 192.168.0.14:35566
-A PREROUTING -i eth1 -p udp -m udp --dport 35566 -j DNAT --to-destination 192.168.0.14:35566
-A PREROUTING -i eth1 -p tcp -m tcp --dport 63875 -j DNAT --to-destination 192.168.0.40:63875
-A PREROUTING -i eth1 -p udp -m udp --dport 63875 -j DNAT --to-destination 192.168.0.40:63875
-A PREROUTING -i eth1 -p tcp -m tcp --dport 1214 -j DNAT --to-destination 192.168.0.40:1214
-A PREROUTING -i eth1 -p udp -m udp --dport 1214 -j DNAT --to-destination 192.168.0.40:1214
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2345 -j DNAT --to-destination 192.168.0.40:5900
-A PREROUTING -i eth1 -p udp -m udp --dport 2345 -j DNAT --to-destination 192.168.0.40:5900
-A PREROUTING -i eth1 -p tcp -m tcp --dport 3334 -j DNAT --to-destination 192.168.0.40:3334
-A PREROUTING -i eth1 -p udp -m udp --dport 3334 -j DNAT --to-destination 192.168.0.40:3334
-A PREROUTING -i eth1 -p tcp -m tcp --dport 5554 -j DNAT --to-destination 192.168.0.40:5554
-A PREROUTING -i eth1 -p udp -m udp --dport 5554 -j DNAT --to-destination 192.168.0.40:5554
-A PREROUTING -i eth1 -p tcp -m tcp --dport 8000 -j DNAT --to-destination 192.168.0.40:8000
-A PREROUTING -i eth1 -p udp -m udp --dport 8000 -j DNAT --to-destination 192.168.0.40:8000
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2034 -j DNAT --to-destination 192.168.0.40:2034
-A PREROUTING -i eth1 -p udp -m udp --dport 2034 -j DNAT --to-destination 192.168.0.40:2034
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2035 -j DNAT --to-destination 192.168.0.40:2035
-A PREROUTING -i eth1 -p udp -m udp --dport 2035 -j DNAT --to-destination 192.168.0.40:2035
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2036 -j DNAT --to-destination 192.168.0.40:2036
-A PREROUTING -i eth1 -p udp -m udp --dport 2036 -j DNAT --to-destination 192.168.0.40:2036
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2037 -j DNAT --to-destination 192.168.0.40:2037
-A PREROUTING -i eth1 -p udp -m udp --dport 2037 -j DNAT --to-destination 192.168.0.40:2037
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2038 -j DNAT --to-destination 192.168.0.40:2038
-A PREROUTING -i eth1 -p udp -m udp --dport 2038 -j DNAT --to-destination 192.168.0.40:2038
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2039 -j DNAT --to-destination 192.168.0.40:2039
-A PREROUTING -i eth1 -p udp -m udp --dport 2039 -j DNAT --to-destination 192.168.0.40:2039
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2040 -j DNAT --to-destination 192.168.0.40:2040
-A PREROUTING -i eth1 -p udp -m udp --dport 2040 -j DNAT --to-destination 192.168.0.40:2040
-A PREROUTING -i eth1 -p tcp -m tcp --dport 36827 -j DNAT --to-destination 192.168.0.40:36827
-A PREROUTING -i eth1 -p udp -m udp --dport 36827 -j DNAT --to-destination 192.168.0.40:36827
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45567 -j DNAT --to-destination 192.168.0.15:45567
-A PREROUTING -i eth1 -p udp -m udp --dport 45567 -j DNAT --to-destination 192.168.0.15:45567
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35567 -j DNAT --to-destination 192.168.0.15:35567
-A PREROUTING -i eth1 -p udp -m udp --dport 35567 -j DNAT --to-destination 192.168.0.15:35567
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45569 -j DNAT --to-destination 192.168.0.17:45569
-A PREROUTING -i eth1 -p udp -m udp --dport 45569 -j DNAT --to-destination 192.168.0.17:45569
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35569 -j DNAT --to-destination 192.168.0.17:35569
-A PREROUTING -i eth1 -p udp -m udp --dport 35569 -j DNAT --to-destination 192.168.0.17:35569
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45570 -j DNAT --to-destination 192.168.0.19:45570
-A PREROUTING -i eth1 -p udp -m udp --dport 45570 -j DNAT --to-destination 192.168.0.19:45570
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35570 -j DNAT --to-destination 192.168.0.19:35570
-A PREROUTING -i eth1 -p udp -m udp --dport 35570 -j DNAT --to-destination 192.168.0.19:35570
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45571 -j DNAT --to-destination 192.168.0.20:45571
-A PREROUTING -i eth1 -p udp -m udp --dport 45571 -j DNAT --to-destination 192.168.0.20:45571
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35571 -j DNAT --to-destination 192.168.0.20:35571
-A PREROUTING -i eth1 -p udp -m udp --dport 35571 -j DNAT --to-destination 192.168.0.20:35571
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45573 -j DNAT --to-destination 192.168.0.23:45573
-A PREROUTING -i eth1 -p udp -m udp --dport 45573 -j DNAT --to-destination 192.168.0.23:45573
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35573 -j DNAT --to-destination 192.168.0.23:35573
-A PREROUTING -i eth1 -p udp -m udp --dport 35573 -j DNAT --to-destination 192.168.0.23:35573
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45575 -j DNAT --to-destination 192.168.0.25:45575
-A PREROUTING -i eth1 -p udp -m udp --dport 45575 -j DNAT --to-destination 192.168.0.25:45575
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35575 -j DNAT --to-destination 192.168.0.25:35575
-A PREROUTING -i eth1 -p udp -m udp --dport 35575 -j DNAT --to-destination 192.168.0.25:35575
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45586 -j DNAT --to-destination 192.168.0.27:45586
-A PREROUTING -i eth1 -p udp -m udp --dport 45586 -j DNAT --to-destination 192.168.0.27:45586
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35586 -j DNAT --to-destination 192.168.0.27:35586
-A PREROUTING -i eth1 -p udp -m udp --dport 35586 -j DNAT --to-destination 192.168.0.27:35586
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45577 -j DNAT --to-destination 192.168.0.28:45577
-A PREROUTING -i eth1 -p udp -m udp --dport 45577 -j DNAT --to-destination 192.168.0.28:45577
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35577 -j DNAT --to-destination 192.168.0.28:35577
-A PREROUTING -i eth1 -p udp -m udp --dport 35577 -j DNAT --to-destination 192.168.0.28:35577
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45578 -j DNAT --to-destination 192.168.0.29:45578
-A PREROUTING -i eth1 -p udp -m udp --dport 45578 -j DNAT --to-destination 192.168.0.29:45578
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35578 -j DNAT --to-destination 192.168.0.29:35578
-A PREROUTING -i eth1 -p udp -m udp --dport 35578 -j DNAT --to-destination 192.168.0.29:35578
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45579 -j DNAT --to-destination 192.168.0.34:45579
-A PREROUTING -i eth1 -p udp -m udp --dport 45579 -j DNAT --to-destination 192.168.0.34:45579
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35579 -j DNAT --to-destination 192.168.0.34:35579
-A PREROUTING -i eth1 -p udp -m udp --dport 35579 -j DNAT --to-destination 192.168.0.34:35579
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45582 -j DNAT --to-destination 192.168.0.39:45582
-A PREROUTING -i eth1 -p udp -m udp --dport 45582 -j DNAT --to-destination 192.168.0.39:45582
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35582 -j DNAT --to-destination 192.168.0.39:35582
-A PREROUTING -i eth1 -p udp -m udp --dport 35582 -j DNAT --to-destination 192.168.0.39:35582
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2229 -j DNAT --to-destination 192.168.0.39:5900
-A PREROUTING -i eth1 -p udp -m udp --dport 2229 -j DNAT --to-destination 192.168.0.39:5900
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45583 -j DNAT --to-destination 192.168.0.41:45583
-A PREROUTING -i eth1 -p udp -m udp --dport 45583 -j DNAT --to-destination 192.168.0.41:45583
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35583 -j DNAT --to-destination 192.168.0.41:35583
-A PREROUTING -i eth1 -p udp -m udp --dport 35583 -j DNAT --to-destination 192.168.0.41:35583
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45592 -j DNAT --to-destination 192.168.0.35:45592
-A PREROUTING -i eth1 -p udp -m udp --dport 45592 -j DNAT --to-destination 192.168.0.35:45592
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35592 -j DNAT --to-destination 192.168.0.35:35592
-A PREROUTING -i eth1 -p udp -m udp --dport 35592 -j DNAT --to-destination 192.168.0.35:35592
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45594 -j DNAT --to-destination 192.168.0.44:45594
-A PREROUTING -i eth1 -p udp -m udp --dport 45594 -j DNAT --to-destination 192.168.0.44:45594
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35594 -j DNAT --to-destination 192.168.0.44:35594
-A PREROUTING -i eth1 -p udp -m udp --dport 35594 -j DNAT --to-destination 192.168.0.44:35594
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45595 -j DNAT --to-destination 192.168.0.45:45595
-A PREROUTING -i eth1 -p udp -m udp --dport 45595 -j DNAT --to-destination 192.168.0.45:45595
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35595 -j DNAT --to-destination 192.168.0.45:35595
-A PREROUTING -i eth1 -p udp -m udp --dport 35595 -j DNAT --to-destination 192.168.0.45:35595
-A PREROUTING -i eth1 -p tcp -m tcp --dport 45596 -j DNAT --to-destination 192.168.0.13:45596
-A PREROUTING -i eth1 -p udp -m udp --dport 45596 -j DNAT --to-destination 192.168.0.13:45596
-A PREROUTING -i eth1 -p tcp -m tcp --dport 35596 -j DNAT --to-destination 192.168.0.13:35596
-A PREROUTING -i eth1 -p udp -m udp --dport 35596 -j DNAT --to-destination 192.168.0.13:35596
-A PREROUTING -i eth1 -p tcp -m tcp --dport 1123 -j DNAT --to-destination 192.168.0.3:1123
-A PREROUTING -i eth1 -p udp -m udp --dport 1123 -j DNAT --to-destination 192.168.0.3:1123
-A PREROUTING -i eth1 -p tcp -m tcp --dport 27015 -j DNAT --to-destination 192.168.0.3:27015
-A PREROUTING -i eth1 -p udp -m udp --dport 27015 -j DNAT --to-destination 192.168.0.3:27015
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2222 -j DNAT --to-destination 192.168.0.3:22
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2224 -j DNAT --to-destination 192.168.0.3:21
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2225 -j DNAT --to-destination 192.168.0.3:5901
-A PREROUTING -i eth1 -p tcp -m tcp --dport 2227 -j DNAT --to-destination 192.168.0.3:3333
-A POSTROUTING -s 192.168.0.220/32 -j MASQUERADE
-A POSTROUTING -s 192.168.0.2/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.2/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.2/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.3/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.3/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.3/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.4/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.4/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.4/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.5/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.5/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.5/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.7/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.7/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.7/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.11/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.11/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.11/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.12/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.12/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.12/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.13/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.13/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.13/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.14/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.14/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.14/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.15/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.15/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.15/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.17/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.17/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.17/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.18/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.18/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.18/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.19/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.19/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.19/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.20/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.20/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.20/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.23/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.23/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.23/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.25/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.25/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.25/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.27/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.27/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.27/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.28/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.28/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.28/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.29/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.29/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.29/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.34/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.34/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.34/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.35/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.35/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.35/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.39/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.39/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.39/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.40/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.40/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.40/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.41/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.41/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.41/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.42/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.42/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.42/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.44/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.44/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.44/32 -o eth2 -j MASQUERADE
-A POSTROUTING -s 192.168.0.46/32 -o eth0 -j MASQUERADE
-A POSTROUTING -s 192.168.0.46/32 -o eth1 -j MASQUERADE
-A POSTROUTING -s 192.168.0.46/32 -o eth2 -j MASQUERADE
COMMIT
# Completed on Wed Dec 3 15:49:53 2008
# Generated by iptables-save v1.4.0 on Wed Dec 3 15:49:53 2008
*filter
:INPUT ACCEPT [856:89345]
:FORWARD DROP [78:13973]
:OUTPUT ACCEPT [839:132976]
-A FORWARD -i eth1 -o eth1 -j ACCEPT
-A FORWARD -m set --set FW_192_168_0_0 src -j ACCEPT
-A FORWARD -m set --set FW_192_168_0_0 dst -j ACCEPT
COMMIT
# Completed on Wed Dec 3 15:49:53 2008
към eth2 съм пренасочил локалните IP-та на доставчика ми но и без нея се тая - в смисъл само с eth0 (входяща за интернет) и eth1 към LAN-a.
edit: хм ..., защо NAT-а ми натва мрежата на /32 ...може би това е проблема ...това ми е регуларния ред за всеки хост поотделно в нат таблицата: iptables -t nat -A POSTROUTING -o eth0 -s 192.168.x.x -j MASQUERADE ...дали не трябва да го опиша за маска /24 - iptables -t nat -A POSTROUTING -o eth0 -s 192.168.x.x/24 -j MASQUERADE