Menu
What's new
By:
Filters Better Search

Brute Force Port Forward

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

W

waeking

Regular Contributor
This is originally taken from Merlin's Wiki. I have adapted the script so that I can make multiple ports forward with one script. However I need a fresh pair of eyes, it isn't working properly. I can't access the forwarded port. It tries for a while and eventually fails. Any insight? My scripting ability is a work in progress.

Code: 
#!/bin/sh
##EXAMPLE
#bfs_portforward eth0 QBELT 3443 192.168.1.241 60 5

IFACE=$1
NAME=$2
PORT=$3
SERVER=$4
SECONDS=$5
HITCOUNT=$6

logger "firewall" "Applying $NAME Brute Force rules"
# create a new chain $NAMEVSBFP
iptables --new "$NAME"VSBFP --table nat
# add rule: add the source IP to the $NAMEVS match list table using the 'recent' match extension
iptables --append "$NAME"VSBFP --table nat --match recent --set --name "$NAME"VS --rsource
# add rule: deny if address has been seen in the $NAMEVS match list more than $HITCOUNT times in the last $SECONDS seconds
iptables --append "$NAME"VSBFP --table nat --match recent --update --name "$NAME"VS --seconds $SECONDS --hitcount $HITCOUNT --rsource --jump RETURN
# add rule: forward packets on port $PORT to $SERVER using the DNAT target extension
iptables --append "$NAME"VSBFP --table nat --proto tcp --dport $PORT --match state --state NEW --jump DNAT --to-destination $SERVER
# add the chain created above to the VSERVER chain and apply to interface $IFACE (public interface)
iptables --insert VSERVER --table nat --in-interface $IFACE --proto tcp --dport $PORT --match state --state NEW --jump "$NAME"VSBFP
 
You must log in or register to reply here.

Similar threads

GShlomi
Sharing my DualWan with port forwarding and DDNS experience
Replies
0
Views
164
GShlomi
GShlomi
H
Port Forwarding Over WireGuard Connection?
2
Replies
22
Views
2K
houmi
houmi
G
VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN
Replies
4
Views
438
Grefyne
G
A
Policy-based port routing to bypass NordVPN client
Replies
10
Views
1K
Don->
D
U
Solved Is it possible to write the Port Forwarding table at the command line and have it appear in the web GUI?
Replies
2
Views
1K
username667
U
Similar threads
Thread starter Title Forum Replies Date
C How to set upstream DNS but force clients to use the router for DNS? Asuswrt-Merlin 2
T AX88 + 4*XT8 "force" 80mhz on XT8 5GHz? Asuswrt-Merlin 0
dragon31337 Automatically rest ethX port to regain 1GB speed Asuswrt-Merlin 8
PaulA Port isolation on RT-AX88U-Pro (router) w/ Merlin w/ Tagged internet ISP Asuswrt-Merlin 1
N Connecting an ax58u to a BT homehub 5, via a lan port, and not getting internet access. Asuswrt-Merlin 3
D Redirect port 443 to 8443 Asuswrt-Merlin 6
GShlomi Sharing my DualWan with port forwarding and DDNS experience Asuswrt-Merlin 0
C 3004.388.6_2 media bridge mode (RT-AX86U but maybe others also) - port status missing Asuswrt-Merlin 8
P Google TV on lan port drops connection Asuswrt-Merlin 5
GShlomi Two WANs but not dual-WAN, with port-forwarding Asuswrt-Merlin 7

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 673 (members: 15, guests: 658)
Top