summaryrefslogtreecommitdiff
path: root/etc/optional/ipv6/hostapd/appliance/ip6tables.sample
diff options
context:
space:
mode:
Diffstat (limited to 'etc/optional/ipv6/hostapd/appliance/ip6tables.sample')
-rw-r--r--etc/optional/ipv6/hostapd/appliance/ip6tables.sample23
1 files changed, 23 insertions, 0 deletions
diff --git a/etc/optional/ipv6/hostapd/appliance/ip6tables.sample b/etc/optional/ipv6/hostapd/appliance/ip6tables.sample
new file mode 100644
index 0000000..a2dd906
--- /dev/null
+++ b/etc/optional/ipv6/hostapd/appliance/ip6tables.sample
@@ -0,0 +1,23 @@
+# This file contains exported IP Tables data that can be read by the
+# ip6tables-restore(8) utility. It is not meant to be edited by hand
+# but regenerated by the ip6tables-save(8) utility after the necessary
+# changes were made via the respective ip6tables(8) commands.
+#
+# The IP Tables stored here implement a simplistic IP forwarding and
+# NAT between `wlan0` (wireless networking) and `eth0` (virtual
+# Ethernet, facing towards the host) interfaces.
+
+*filter
+:INPUT ACCEPT [0:0]
+:FORWARD ACCEPT [0:0]
+:OUTPUT ACCEPT [0:0]
+[0:0] -A FORWARD -i wlan0 -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
+[0:0] -A FORWARD -i wlan0 -o eth0 -j ACCEPT
+COMMIT
+*nat
+:PREROUTING ACCEPT [0:0]
+:INPUT ACCEPT [0:0]
+:OUTPUT ACCEPT [0:0]
+:POSTROUTING ACCEPT [0:0]
+[0:0] -A POSTROUTING -o eth0 -j MASQUERADE
+COMMIT
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-24 06:24:42 +0000