Liberar porta de página Web [RESOLVIDO]

1. Liberar porta de página Web [RESOLVIDO]

Diogo Pereira
diogospace

(usa Debian)

Enviado em 13/08/2014 - 12:04h

Galera bom dia.

Estou com o seguinte problema:

Meu Iptables e Squid estão rodando na boa, porém meu diretor que tem acesso fullaccess, não está conseguindo acessar a URL (webmail.mariacallas.com.br/webmail), verifiquei que ela usa a porta 2095, já tentei fazer de tudo, porém estou iniciando e não tenho uma base muito legal para firewall...
Meu objetivo é descobrir como libero esta porta para que o usuario consiga acessa o site.


Segue abaixo meu Iptables e Squid

##### Squid. Conf ######


http_port 3128 transparent

error_directory /usr/share/squid/errors/Portuguese

#dns_nameservers 177.125.27.22, 177.125.27.26
cache_mem 2048 MB
maximum_object_size_in_memory 200 KB
maximum_object_size 5120 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 2048 32 512
cache_access_log /var/log/squid/access.log

visible_hostname brasfaiber

refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
#acl localhost src 127.0.0.1/32
#acl to_localhost dst 127.0.0.0/8

#acl localnet src 10.0.0.0/8
#acl localnet src 172.16.0.0/12
#acl localnet src 192.168.0.0/16


acl SSL_ports port 443 563 # SSL
acl Safe_ports port 587 # smtp
acl Safe_ports port 110 # pop
acl Safe_ports port 80 # http
acl Port_8080 port 8080 # prefeitura
acl Port_809 port 809 # SPtrans
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 37777 # intelbras portatil
acl Safe_ports port 7070 # intepbras http
acl Safe_ports port 2095 # webmail
acl Safe_ports port 2096 # webmail

acl purge method PURGE
acl CONNECT method CONNECT

http_access allow Port_8080
http_access allow Port_809
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !Safe_ports
http_access allow localhost

#### listas ####

acl black_list url_regex -i "/var/lib/samba/brasfaiber/Administrativo/Internet/lista-negra.dat"
acl white_list url_regex -i "/var/lib/samba/brasfaiber/Administrativo/Internet/lista-branca.dat"
acl Brasfaiber url_regex -i "/var/lib/samba/brasfaiber/Administrativo/Internet/brasfaiber.dat"
acl sem_acesso src "/var/lib/samba/brasfaiber/Administrativo/Internet/sem_acesso.dat"
acl FullAccess src "/var/lib/samba/brasfaiber/Administrativo/Internet/fullaccess.dat"
acl 24horas src "/var/lib/samba/brasfaiber/Administrativo/Internet/24horas.dat"

#### listas ####

#acl HORARIO_ALMOCO time MTWHF 12:00-13:30

#acl hrAlmoco1 time 12:00-13:00
#acl users_hrAlmoco1 src "/var/lib/samba/brasfaiber/Administrativo/Internet/users_hrAlmoco1"

#acl hrAlmoco2 time 12:30-13:30
#acl users_hrAlmoco2 src "/var/lib/samba/brasfaiber/Administrativo/Internet/users_hrAlmoco2"

#acl hr1730 time 17:30-23:59
#acl users_hr1730 src "/var/lib/samba/brasfaiber/Administrativo/Internet/users_hr1730"

#acl uoldiveo src 200.221.129.6/32

#acl extencoes url_regex -i \.avi \.mp3 \.torrent \.bat \.ini
#http_access deny extencoes !FullAccess

http_access allow sem_acesso Brasfaiber
http_access allow localhost
http_access allow FullAccess
http_access allow white_list
http_access deny black_list
http_access allow 24horas
#http_access allow users_hrAlmoco1 hrAlmoco1
#http_access allow users_hrAlmoco2 hrAlmoco2
#http_access allow users_hr1730 hr1730

http_access deny sem_acesso


#http_access deny localnet

http_access allow localhost
http_access deny all

#Allow ICP queries from local networks only
#icp_access allow localnet
#icp_access deny all
#icp_port 3130


#acl localnet src 10.0.0.0/8
#acl localnet src 172.16.0.0/12
#acl localnet src 192.168.0.0/16

##### Fim do Squid. Conf ######



##### Iptables ######

#!/bin/bash
# Script de Regras do Iptables
# Acionado por /etc/init.d/firewall start
# Criado por Diogo Pereira - 10-7-14


#*filter

iptables -t filter -A INPUT -p icmp -j ACCEPT
iptables -t filter -A INPUT -i tun0 -j ACCEPT



iptables -t filter -A INPUT -p tcp -m tcp --sport 80 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 22 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 21 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 21 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 5900 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 5900 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 8245 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 8245 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 10050 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 10050 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 8081 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 8081 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 8082 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 8082 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 21000 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 21000 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 2082 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 2082 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 1194 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 1194 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A INPUT -p udp -m udp --sport 53 -j ACCEPT
iptables -t filter -A INPUT -p udp -m udp --dport 53 -j ACCEPT
iptables -t filter -A INPUT -p udp -m udp --sport 1194 -j ACCEPT
iptables -t filter -A INPUT -p udp -m udp --dport 1194 -j ACCEPT

iptables -t filter -A INPUT -i eth1 -p udp -m udp --sport 137 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --dport 137 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --sport 139 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 139 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --sport 139 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --dport 139 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp -m tcp --sport 22000 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --sport 138 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 138 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --sport 138 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --dport 138 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --sport 135 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 135 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --sport 135 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --dport 135 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --sport 445 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 445 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --sport 445 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p udp -m udp --dport 445 -j ACCEPT
iptables -t filter -A INPUT -i lo -p udp -m udp --sport 137 -j ACCEPT
iptables -t filter -A INPUT -i lo -p udp -m udp --dport 137 -j ACCEPT
iptables -t filter -A INPUT -s 127.0.0.1 -d 127.0.0.1 -p udp -j ACCEPT
iptables -t filter -A INPUT -s 127.0.0.1 -d 127.0.0.1 -p tcp -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 3128 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --sport 81 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp -m tcp --dport 81 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 7531 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p icmp -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --sport 37 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m multiport -s 0/0 -d 192.168.11.254 --dport 3050,3051 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp -m multiport -s 0/0 -d 192.168.11.254 --sport 3050,3051 -j ACCEPT

iptables -t filter -A INPUT -p gre -j ACCEPT
iptables -t filter -A INPUT -p icmp -j ACCEPT

iptables -t filter -A INPUT -m limit --limit 4/min -j LOG --log-prefix "INP_DROP -- DENY Policy " --log-level 6
iptables -t filter -A INPUT -j DROP


iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 802 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.48 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.48 -p tcp -m tcp --sport 3002 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 802 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.47 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.47 -p tcp -m tcp --dport 3002 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 802 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.45 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.45 -p tcp -m tcp --dport 3002 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 802 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.43 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.43 -p tcp -m tcp --dport 3002 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 802 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.74 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.74 -p tcp -m tcp --dport 3002 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 802 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.34 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.34 -p tcp -m tcp --dport 3002 -j ACCEPT

iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 25 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 110 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 587 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 587 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 802 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 802 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -d 192.168.11.37 -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -s 192.168.11.37 -p tcp -m tcp --dport 3002 -j ACCEPT


iptables -t filter -A FORWARD -p tcp -m tcp --sport 1234 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 1234 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 5900 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 5900 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 443 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 443 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 123 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 8080 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 8080 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 809 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 809 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 3000 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 3000 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 3002 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 3002 -j ACCEPT
iptables -t filter -A FORWARD -p udp -m udp --sport 53 -j ACCEPT
iptables -t filter -A FORWARD -p udp -m udp --dport 53 -j ACCEPT
iptables -t filter -A FORWARD -p udp -m udp --sport 123 -j ACCEPT
iptables -t filter -A FORWARD -p udp -m udp --dport 123 -j ACCEPT

### Portas DVR Intelbras ###
iptables -t filter -A FORWARD -p tcp -m tcp --dport 37777 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 37777 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 7070 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 7070 -j ACCEPT
### Fim das Portas do DVR Intelbras ###


### Portas SUPORTE GRV X ###
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2101 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2102 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2103 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2104 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2105 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2106 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2107 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2108 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2109 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2110 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2111 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2112 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2113 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2114 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2115 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2116 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2117 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2118 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2119 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2120 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2121 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2122 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2123 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2124 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2125 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2126 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2127 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2128 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2129 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2130 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2131 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2132 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2133 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2134 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2135 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2136 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2137 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2138 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2139 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2140 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2141 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2142 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2143 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2144 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2145 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2146 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2147 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2148 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2149 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2150 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2151 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2152 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2153 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2154 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2155 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2156 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2157 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2158 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2159 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2160 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2161 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2162 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2163 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2164 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2165 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2166 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2167 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2168 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2169 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2170 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2171 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2172 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2173 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2174 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2175 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2176 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2177 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2178 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2179 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2180 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2181 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2182 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2183 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2184 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2185 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2186 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2187 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2188 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2189 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2190 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2191 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2192 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2193 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2194 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2195 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2196 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2197 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2198 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2199 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2200 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2201 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2202 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2203 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2204 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2205 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2206 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2207 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2208 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2209 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2210 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2211 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2212 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2213 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2214 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2215 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2216 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2217 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2218 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2219 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2220 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2221 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2222 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2223 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2224 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2225 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2226 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2227 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2228 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2229 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2230 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2231 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2232 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2233 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2234 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2235 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2236 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2237 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2238 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2239 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --dport 2240 -j ACCEPT

iptables -t filter -A FORWARD -p tcp -m tcp --sport 2101 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2102 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2103 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2104 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2105 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2106 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2107 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2108 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2109 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2110 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2111 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2112 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2113 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2114 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2115 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2116 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2117 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2118 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2119 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2120 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2121 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2122 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2123 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2124 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2125 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2126 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2127 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2128 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2129 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2130 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2131 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2132 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2133 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2134 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2135 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2136 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2137 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2138 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2139 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2140 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2141 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2142 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2143 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2144 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2145 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2146 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2147 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2148 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2149 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2150 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2151 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2152 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2153 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2154 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2155 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2156 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2157 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2158 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2159 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2160 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2161 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2162 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2163 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2164 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2165 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2166 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2167 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2168 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2169 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2170 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2171 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2172 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2173 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2174 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2175 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2176 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2177 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2178 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2179 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2180 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2181 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2182 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2183 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2184 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2185 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2186 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2187 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2188 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2189 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2190 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2191 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2192 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2193 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2194 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2195 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2196 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2197 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2198 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2199 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2200 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2201 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2202 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2203 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2204 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2205 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2206 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2207 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2208 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2209 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2210 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2211 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2212 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2213 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2214 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2215 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2216 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2217 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2218 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2219 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2220 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2221 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2222 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2223 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2224 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2225 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2226 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2227 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2228 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2229 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2230 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2231 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2232 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2233 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2234 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2235 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2236 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2237 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2238 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2239 -j ACCEPT
iptables -t filter -A FORWARD -p tcp -m tcp --sport 2240 -j ACCEPT

### Fim das Portas SUPORTE GRV X ###


iptables -t filter -A FORWARD -m limit --limit 4/min -j LOG --log-prefix "FWD_DROP -- DENY Policy " --log-level 6
iptables -t filter -A FORWARD -j DROP

#*mangle

#*nat

iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 7070 -j DNAT --to-destination 192.168.11.33:7070
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 37777 -j DNAT --to-destination 192.168.11.33:37777


iptables -t nat -A POSTROUTING -s 192.168.11.0/255.255.255.0 -o eth0 -j MASQUERADE

iptables -A INPUT -j LOG --log-level info --log-prefix "DROP:"
iptables -A OUTPUT -j LOG --log-level info --log-prefix "DROP:"



##### Fim do Iptables ######


  


2. MELHOR RESPOSTA

Buckminster
Buckminster

(usa Debian)

Enviado em 13/08/2014 - 15:14h

diogospace escreveu:

Resolvido meu querido...


Muito Obrigado pela paciência.

## Solução ###

iptables -I FORWARD -d mail.mariacallas.com.br -j ACCEPT
iptables -I FORWARD -s mail.mariacallas.com.br -j ACCEPT


De nada.

3. Re: Liberar porta de página Web [RESOLVIDO]

Buckminster
Buckminster

(usa Debian)

Enviado em 13/08/2014 - 12:21h

Essa URL não está errada?

webmail.mariacallas.com.br/webmail

Não seria www.mariacallas.com.br?


4. Re: Liberar porta de página Web [RESOLVIDO]

Diogo Pereira
diogospace

(usa Debian)

Enviado em 13/08/2014 - 13:48h

Pior que não.

Pensei a mesma coisa, mas, tenta acessar aí vai direto para uma pagina de login cpanel.


5. Re: Liberar porta de página Web [RESOLVIDO]

Buckminster
Buckminster

(usa Debian)

Enviado em 13/08/2014 - 14:12h

Coloque essas duas regras no teu script

iptables -I FORWARD -d webmail.mariacallas.com.br/webmail -j ACCEPT
iptables -I FORWARD -s webmail.mariacallas.com.br/webmail -j ACCEPT

reinicie o Iptables e teste.


6. Re: Liberar porta de página Web [RESOLVIDO]

Diogo Pereira
diogospace

(usa Debian)

Enviado em 13/08/2014 - 14:21h

iptables v1.4.14: invalid mask `webmail' specified
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.4.14: invalid mask `webmail' specified
Try `iptables -h' or 'iptables --help' for more information.



7. Re: Liberar porta de página Web [RESOLVIDO]

Buckminster
Buckminster

(usa Debian)

Enviado em 13/08/2014 - 14:42h

diogospace escreveu:

iptables v1.4.14: invalid mask `webmail' specified
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.4.14: invalid mask `webmail' specified
Try `iptables -h' or 'iptables --help' for more information.


Acredito que essa URL webmail.mariacallas.com.br/webmail não está correta.


8. Re: Liberar porta de página Web [RESOLVIDO]

Diogo Pereira
diogospace

(usa Debian)

Enviado em 13/08/2014 - 14:48h

Então...

se eu libero o firewall iptables -F funciona

testa em seu navegador webmail.mariacallas.com.br/webmail

entra uma pagina do cpanel idêntica a essa http://webmail.brasfaiber.com.br/


9. Re: Liberar porta de página Web [RESOLVIDO]

Buckminster
Buckminster

(usa Debian)

Enviado em 13/08/2014 - 14:57h

Não entrou nem no Firefox, nem no IE11.

A página http://webmail.brasfaiber.com.br/ entra e a página www.mariacalla.com.br também entra e aparece login e senha.


10. Re: Liberar porta de página Web [RESOLVIDO]

Diogo Pereira
diogospace

(usa Debian)

Enviado em 13/08/2014 - 15:00h

PUTS
AGORA QUE ME TOQUEI

a URL é http://mail.mariacallas.com.br/webmail

desculpa cara.

mesmo assim continuo sem acesso.


11. Re: Liberar porta de página Web [RESOLVIDO]

Buckminster
Buckminster

(usa Debian)

Enviado em 13/08/2014 - 15:06h

diogospace escreveu:

PUTS
AGORA QUE ME TOQUEI

a URL é http://mail.maricallas.com.br/webmail

desculpa cara.

mesmo assim continuo sem acesso.


Com maricalllas não entrou, mas http://mail.mariacallas.com.br/webmail entrou.

Coloque essa URL http://mail.mariacallas.com.br/webmail nas regras que te passei antes, reinicie o Iptables e teste.


12. Re: Liberar porta de página Web [RESOLVIDO]

Diogo Pereira
diogospace

(usa Debian)

Enviado em 13/08/2014 - 15:13h

Resolvido meu querido...


Muito Obrigado pela paciência.

## Solução ###

iptables -I FORWARD -d mail.mariacallas.com.br -j ACCEPT
iptables -I FORWARD -s mail.mariacallas.com.br -j ACCEPT



01 02



Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts