fi
# Outgoing masquerading (don't masqerade IPSEC (mark 50))
- /sbin/iptables -t nat -A REDNAT -m mark --mark 50 -o $IFACE -j RETURN
- /sbin/iptables -t nat -A REDNAT -o $IFACE -j MASQUERADE
+ #/sbin/iptables -t nat -A REDNAT -m mark --mark 50 -o $IFACE -j RETURN
+ #/sbin/iptables -t nat -A REDNAT -o $IFACE -j MASQUERADE
fi
}
/sbin/iptables -A FORWARD -j DROP -m comment --comment "DROP_FORWARD"
#Only for firewall Hits statistik
- /sbin/iptables -A POLICYFWD -j DROP -m comment --comment "DROP_FORWARD"
- /sbin/iptables -A POLICYOUT -j DROP -m comment --comment "DROP_OUTPUT"
+ #/sbin/iptables -A POLICYFWD -j DROP -m comment --comment "DROP_FORWARD"
+ #/sbin/iptables -A POLICYOUT -j DROP -m comment --comment "DROP_OUTPUT"