added iptables file

files/miscscripts/vps-iptables.txt

@@ -0,0 +1,55 @@
+# Generated by iptables-save v1.8.7 on Wed Jul  5 10:57:33 2023
+*filter
+:INPUT ACCEPT [3609:32209664]
+:FORWARD ACCEPT [90:8904]
+:OUTPUT ACCEPT [3317:307471]
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 53 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p udp -m udp --dport 53 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 443 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 21115 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 21116 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p udp -m udp --dport 21116 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 21117 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 21118 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 21119 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 22026 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p tcp -m tcp --dport 22067 -m conntrack --ctstate NEW -j ACCEPT
+-A FORWARD -i eth0 -o wg1 -p udp -m udp --dport 51830 -m conntrack --ctstate NEW -j ACCEPT
+COMMIT
+# Completed on Wed Jul  5 10:57:33 2023
+# Generated by iptables-save v1.8.7 on Wed Jul  5 10:57:33 2023
+*nat
+:PREROUTING ACCEPT [12:2096]
+:INPUT ACCEPT [7:488]
+:OUTPUT ACCEPT [146:9492]
+:POSTROUTING ACCEPT [0:0]
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 53 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p udp -m udp --dport 53 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 443 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 21115 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 21116 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p udp -m udp --dport 21116 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 21117 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 21118 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 21119 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 22026 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p tcp -m tcp --dport 22067 -j DNAT --to-destination 10.0.10.2
+-A PREROUTING -i eth0 -p udp -m udp --dport 51830 -j DNAT --to-destination 10.0.10.2
+-A POSTROUTING -j MASQUERADE
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 53 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p udp -m udp --dport 53 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 80 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 443 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 21115 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 21116 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p udp -m udp --dport 21116 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 21117 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 21118 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 21119 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 22026 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p tcp -m tcp --dport 22067 -j SNAT --to-source 10.0.10.1
+-A POSTROUTING -d 10.0.10.2/32 -o wg1 -p udp -m udp --dport 51830 -j SNAT --to-source 10.0.10.1
+COMMIT
+# Completed on Wed Jul  5 10:57:33 2023