|
|
ipfilter+squid架好了,QQ和foxmail 却用不了
在QQ中选http代理测试成功,但QQ要上的话得是tecent的会员
单ipfilter,不启动squid,QQ是可用的
但我一定要squid的,有没有谁搞过呀
freebsd上有三网卡
外rl1 ip:218.85.158.244
内rl0 ip:192.168.1.7 ----接上网服务
内ed0 ip:131.107.3.3 ---向外提供web,mail服务
ipnat.rules:
rdr rl0 0.0.0.0/0 port 80 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 21 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 20 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 443 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 25 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 110 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 1080 -> 192.168.1.7 port 3128 tcp/udp
rdr rl0 0.0.0.0/0 port 8000 -> 192.168.1.7 port 3128 tcp/udp
map rl1 131.107.3.0/24 -> 0/32 portmap tcp/udp 30001:60000
map rl1 131.107.3.0/24 -> 0/32 portmap
rdr rl1 218.85.158.244/32 port 80 -> 131.107.3.5 port 80
rdr rl1 218.85.158.244/32 port 25 -> 131.107.3.5 port 25
rdr rl1 218.85.158.244/32 port 110 -> 131.107.3.5 port 110
rdr rl1 218.85.158.244/32 port 21 -> 131.107.3.8 port 69
rdr rl1 218.85.158.244/32 port 20 -> 131.107.3.8 port 20
ipf.rules:
block in log quick all with short
block in log quick all with ipopts
block in log quick all with frag
pass out on rl0 all
pass in on rl0 all
pass out on ed0 all
pass in on ed0 all
pass out quick on lo0 all
pass in quick on lo0 all
block out on rl1 all
block out log on rl1 from any to 192.168.0.0/16
block out log quick on rl1 from any to 0.0.0.0/8
block out log quick on rl1 from any to 169.254.0.0/8
block out log quick on rl1 from any to 10.0.0.0/8
block out log quick on rl1 from any to 127.16.0.0/12
block out log quick on rl1 from any to 192.0.2.0/24
block out log quick on rl1 from any to 204.152.64.0/23
block out log quick on rl1 from any to 224.0.0.0/3
pass out log on rl1 proto tcp/udp from any to any keep state
pass out log on rl1 proto icmp all keep state
block in log on rl1 from 192.168.0.0/16 to any
block in log quick on rl1 from 10.0.0.0/8 to any
block in log quick on rl1 from 172.16.0.0/12 to any
block in log quick on rl1 from 127.0.0.0/8 to any
block in log quick on rl1 from 192.0.2.0/24 to any
block in log quick on rl1 from 169.254.0.0/16 to any
block in log quick on rl1 from 224.0.0.0/3 to any
block in log quick on rl1 from 204.152.64.0/23 to any
block in log quick on rl1 from any to 218.85.158.0/32
block in log quick on rl1 from any to 218.85.158.255/32
pass in quick on rl1 proto tcp from any to 131.107.3.5/32 port=80 flags S/SA keep state
pass in quick on rl1 proto tcp from any to 131.107.3.5/32 port=25 flags S/SA keep state
pass in quick on rl1 proto tcp from any to 131.107.3.5/32 port=110 flags S/SA keep state
pass in quick on rl1 proto tcp from any to 131.107.3.8/32 port=21 flags S/SA keep state
pass in quick on rl1 proto tcp from any to 131.107.3.8/32 port=20 flags S/SA keep state
pass in quick on rl1 proto tcp from any to any flags S/SA keep state
pass in quick on rl1 proto udp from any to any flags S/SA keep state |
|
IP卡
狗仔卡
发表于 2003-12-30 13:31:16
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡
楼主