
#Rules for FORWARD

#Acces serveur web (acl 11)
#rules is auto



#Acces serveur web (acl 11)
-A NET1-INTRANET -p tcp --dport 80 --sport 1024:65535 -d 10.1.42.42 -m state --state NEW --syn -j NFQUEUE --queue-num 0  # 11 3



#Acces serveur web (acl 11)
#rules is auto



#Acces serveur web (acl 11)
-A NET2-INTRANET -p tcp --dport 80 --sport 1024:65535 -d 10.1.42.42 -m state --state NEW --syn -j NFQUEUE --queue-num 0  # 11 4


-A INTERNET-INTRANET -j ULOG --ulog-prefix "INTERNET-INTRANET"
-A INTERNET-INTRANET -j DROP

-A INTERNET-NET1 -j ULOG --ulog-prefix "INTERNET-NET1"
-A INTERNET-NET1 -j DROP

-A INTERNET-NET2 -j ULOG --ulog-prefix "INTERNET-NET2"
-A INTERNET-NET2 -j DROP

-A INTRANET-INTERNET -j ULOG --ulog-prefix "INTRANET-INTERNET"
-A INTRANET-INTERNET -j DROP

-A INTRANET-NET1 -j ULOG --ulog-prefix "INTRANET-NET1"
-A INTRANET-NET1 -j DROP

-A INTRANET-NET2 -j ULOG --ulog-prefix "INTRANET-NET2"
-A INTRANET-NET2 -j DROP

-A NET1-INTERNET -j ULOG --ulog-prefix "NET1-INTERNET"
-A NET1-INTERNET -j DROP

-A NET1-INTRANET -j ULOG --ulog-prefix "NET1-INTRANET"
-A NET1-INTRANET -j DROP

-A NET1-NET2 -j ULOG --ulog-prefix "NET1-NET2"
-A NET1-NET2 -j DROP

-A NET2-INTERNET -j ULOG --ulog-prefix "NET2-INTERNET"
-A NET2-INTERNET -j DROP

-A NET2-INTRANET -j ULOG --ulog-prefix "NET2-INTRANET"
-A NET2-INTRANET -j DROP

-A NET2-NET1 -j ULOG --ulog-prefix "NET2-NET1"
-A NET2-NET1 -j DROP

