NH CONSULTORIA

De Wiki NOC
Edição feita às 13h38min de 13 de setembro de 2012 por 192.168.0.1 (Discussão)

Servidor de arquivos

192.168.0.5

"[homes]"
"[netlogon]"
"[printers]"
"[todos]"
"[backup]"
"[sw_livres]"
"[contabil]"
"[pessoal]"
"[sc_info]"
"[sc_2005]"
"[dbsybase]"

Usuários

marcelo, ma*3492


rc.local

### LIBERA MSN PARA OS IPs ABAIXO                                                                                                                              
#iptables -t mangle -A POSTROUTING -s 192.168.0.21 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                         
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.21 -m layer7 --l7proto msnmessenger -j ACCEPT                                                           
#iptables -t mangle -A POSTROUTING -s 192.168.0.68 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                         
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.68 -m layer7 --l7proto msnmessenger -j ACCEPT                                                           
#iptables -t mangle -A POSTROUTING -s 192.168.0.89 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                         
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.89 -m layer7 --l7proto msnmessenger -j ACCEPT                                                           
#iptables -t mangle -A POSTROUTING -s 192.168.0.154 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                        
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.154 -m layer7 --l7proto msnmessenger -j ACCEPT                                                          
#iptables -t mangle -A POSTROUTING -s 192.168.0.243 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                        
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.243 -m layer7 --l7proto msnmessenger -j ACCEPT                                                          
                                                                                                                                                               
### BLOQUEIO MSN RESTANTE DA REDE                                                                                                                              
#iptables -t mangle -A POSTROUTING -m layer7 --l7proto msnmessenger -j DROP                                                                                    
                                                                                                                                                               
# Speed UP DNS                                                                                                                                                 
iptables -t mangle -A OUTPUT -p udp --dport 53 -j TOS --set-tos 0x08                                                                                           
iptables -t mangle -A PREROUTING -p udp --dport 53 -j TOS --set-tos 0x10                                                                                       
                                                                                                                                                               
# Speed UP HTTP                                                                                                                                                
iptables -t mangle -A OUTPUT -p tcp -j TOS --sport 80 --set-tos 0x08                                                                                           
iptables -t mangle -A PREROUTING -p tcp --dport 80 -j TOS --set-tos 0x08                                                                                       
                                                                         
### Bloqueio por usuario Leandro                                                                                                                               
                                                                                                                                                               
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.receita.fazenda.gov.br -j ACCEPT                                                                  
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.jucesc.sc.gov.br -j ACCEPT                                                                        
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.sef.sc.gov.br -j ACCEPT                                                                           
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                             
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                             
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.pmf.sc.gov.br -j ACCEPT                                                                           
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d pmf.sc.gov.br -j ACCEPT                                                                               
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.pmsj.sc.gov.br -j ACCEPT                                                                          
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d pmsj.sc.gov.br -j ACCEPT                                                                              
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.cremesc.org.br -j ACCEPT                                                                          
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.crcsc.org.br -j ACCEPT                                                                            
                                                                                                                                                               
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.receita.fazenda.gov.br -j ACCEPT                                                                            
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.jucesc.sc.gov.br -j ACCEPT                                                                                  
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.sef.sc.gov.br -j ACCEPT                                                                                     
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                       
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                       
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.pmf.sc.gov.br -j ACCEPT                                                                                     
iptables -I FORWARD -p tcp -s 192.168.0.125 -d pmf.sc.gov.br -j ACCEPT                                                                                         
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.pmsj.sc.gov.br -j ACCEPT                                                                                    
iptables -I FORWARD -p tcp -s 192.168.0.125 -d pmsj.sc.gov.br -j ACCEPT                                                                                        
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.cremesc.org.br -j ACCEPT                                                                                    
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.crcsc.org.br -j ACCEPT                                                                                      
                                                                                                                                                               
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.receita.fazenda.gov.br -j ACCEPT                                                                              
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.jucesc.sc.gov.br -j ACCEPT                                                                                    
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.sef.sc.gov.br -j ACCEPT                                                                                       
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                         
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                         
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.pmf.sc.gov.br -j ACCEPT                                                                                       
iptables -I INPUT -p tcp -s 192.168.0.125 -d pmf.sc.gov.br -j ACCEPT                                                                                           
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.pmsj.sc.gov.br -j ACCEPT                                                                                      
iptables -I INPUT -p tcp -s 192.168.0.125 -d pmsj.sc.gov.br -j ACCEPT                                                                                          
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.cremesc.org.br -j ACCEPT                                                                                      
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.crcsc.org.br -j ACCEPT                                                                                        
                                                                                                                                                               
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 --dport 110 -j ACCEPT                                                                                    
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 --dport 587 -j ACCEPT                                                                                    
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d webmail.nhconsultoria.com.br -j ACCEPT                                                                
iptables -I FORWARD -p tcp -s 192.168.0.125 -d webmail.ita.locaweb.com.br -j ACCEPT                                                                            
iptables -I OUTPUT -p tcp -s 192.168.0.125 --dport 110 -j ACCEPT                                                                                               
iptables -I OUTPUT -p tcp -s 192.168.0.125 --dport 587 -j ACCEPT                                                                                               
iptables -I FORWARD -m tcp -p tcp -s 192.168.0.125 --dport 110 -j ACCEPT                                                                                       
iptables -I FORWARD -m tcp -p tcp -s 192.168.0.125 --dport 587 -j ACCEPT                                                                                       
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d pop.nhconsultoria.com.br -j ACCEPT                                                                    
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d smtp.nhconsultoria.com.br -j ACCEPT                                                                   
                                                                                                                                                               
iptables -I PREROUTING -p tcp -s 192.168.0.125 -j DROP                                                                                                         
iptables -I INPUT -p tcp -s 192.168.0.125 -j DROP                                                                                                              
iptables -I OUTPUT -p tcp -s 192.168.0.125 -j DROP                                                                                                             
iptables -I FORWARD -m tcp -p tcp -s 192.168.0.125 -j DROP                                                                                                     
                                                                                                                                                               
                                                                                                                                                               
### AMD                                                                                                                                                        
cp /partition/meu_profile/profile /root/.profile                                                                                                               
cp /partition/lupa.png /var/htdocs/webadmin/images/logo.png                                                                                                    
                                                                                                                                                               
/partition/lupa/scripts/snmpd.sh                                                                                                                               
Ferramentas pessoais