Скрипт создания таблицы с адресами<\/p>\n
#!\/bin\/sh\n\nrm \/tmp\/reestr.txt\nrm \/tmp\/reestrbsd.txt\n\/usr\/local\/bin\/wget -O - https:\/\/reestr.rublacklist.net\/api\/v2\/ips\/json|tr ',' '\\n'|tr -d '"'|tr -d ']'|tr -d '[' > \/tmp\/reestr.txt\ngrep -E -o "([0-9]{1,3}[\\.]){3}[0-9]{1,3}" \/tmp\/reestr.txt > \/tmp\/reestrbsd.txt\n\nfile="\/tmp\/reestrbsd.txt"\nipfw table 1 flush\nwhile read line\ndo\nipfw table 1 add $line\ndone < $file<\/code><\/pre>Фаервол:<\/p>\n
#!\/bin\/sh -\n\n# прописываем роут для setfib 1\nsetfib 1 route del default\nsetfib 1 route add default -interface tun1\n\nfwcmd="\/sbin\/ipfw"\n${fwcmd} -f flush\n${fwcmd} -f pipe flush\n${fwcmd} nat 1 delete\n${fwcmd} nat 2 delete\n\nif_local1="re0" # локалка\nif_inet1="ng0" # интерфейс интернета\nif_rkn="tun1" # интерфейс openvpn\n\n # заруливаем все обращения к ip из таблицы в setfib 1\n ${fwcmd} add setfib 1 ip from any to table\\(1\\) recv ${if_local1}\n\n # основной нат\n ${fwcmd} nat 1 config if ${if_inet1} same_ports\n ${fwcmd} add nat 1 ip from any to any via ${if_inet1}\n\n # нат для ip из таблицы\n ${fwcmd} nat 2 config if ${if_rkn} same_ports\n ${fwcmd} add nat 2 ip from any to any via ${if_rkn}\n\n ${fwcmd} add allow all from any to any<\/code><\/pre>",
"date_published": "2021-07-03T17:46:27+03:00",
"date_modified": "2024-03-01T11:26:45+03:00",
"tags": [
"Freebsd",
"ipfw",
"setfib"
],
"_date_published_rfc2822": "Sat, 03 Jul 2021 17:46:27 +0300",
"_rss_guid_is_permalink": "false",
"_rss_guid": "105",
"_e2_data": {
"is_favourite": false,
"links_required": [
"highlight\/highlight.js",
"highlight\/highlight.css"
],
"og_images": []
}
},
{
"id": "90",
"url": "https:\/\/anikin.pw\/all\/prozrachny-nat-na-shlyuze-freebsd\/",
"title": "Прозрачный nat нескольких сетей FreeBSD",
"content_html": "