diff options
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 22 |
1 files changed, 7 insertions, 15 deletions
@@ -2,23 +2,15 @@ Dual stack capable iptables firewall script ``` +supports two interfaces/addresses plus NAT support for VPN servers + +Terminology used in the script: +"Public" an address where services are available +"Private" (optional) another address where services are available + +Example: public and private are both public facing interfaces but have different ports allowed. e.g. private (1.1.1.2) IP allows SSH and VPN access while public (1.1.1.1) allows HTTP. - -+----------+ +-------------+ -| | "public" | 1.1.1.1 | -| <-----------------> 2001::1 | -| internet | | eth0 | -| <-----------------> 1.1.1.2 | -| | "private" | 2001::2 | -+----------+ +-------------+ - - -+-----------+ +-------------+ -| | 172.16.23.0/24 | | -| VPN <----------------> tun0 | -| | | 172.16.23.1 | -+-----------+ +-------------+ ``` |