Created
July 25, 2018 10:42
-
-
Save 0rbadvent/b25b5bafcde94863225b09eeab2c025d to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| sudo ufw reset | |
| sudo iptables -F | |
| sudo iptables -X | |
| sudo ufw default deny incoming | |
| sudo ufw default deny outgoing | |
| sudo ufw allow out on tun0 from any to any | |
| sudo ufw allow out on enp3s0 to 192.168.1.0/24 | |
| sudo ufw allow in on enp3s0 from 192.168.1.0/24 | |
| sudo ufw allow out on enp3s0 to 10.0.0.0/8 | |
| sudo ufw allow in on enp3s0 from 10.0.0.0/8 | |
| sudo ufw allow out on enp3s0 to any port 1194 proto udp | |
| sudo ufw allow in on enp3s0 to any port 1194 proto udp | |
| sudo ufw allow out on tun0 from any to any | |
| sudo ufw allow in on tun0 from any to any | |
| sudo ufw route allow out on enp3s0 in on tun0 | |
| sudo ufw route allow in on tun0 out on enp3s0 | |
| sudo ufw allow qbittorrent | |
| for a in `host us-east.privateinternetaccess.com | awk '{ print $4 }'`; do sudo ufw allow out on enp3s0 to $a; done | |
| sudo ufw enable | |
| sudo ufw reload |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment