Boa Noite equipe e todo o pessoal do Ubuntu Br.
Estou com um probleminha com o iptables no ubuntu 12.04.2 LTS, que não consigo resolver e acredite, ja passei horas a fios pesquisando sobre o assunto, mas nada que tentei obteve resultado.
Fiz um servidor no ubuntu e intalei o iptables para compatilhar a internet e abrir portas, mas quando eu passo o portscan, o resultado me entrega sempre as mesmas portas respondendo que não são as portas que abri.
Ja abri umas, fechei outras, ja deixei ele passando tudo, mas o resultado do portscan são sempre as mesmas portas. E as portas que eu quero que ele abre, o portscan me retorna que a porta não respondeu.
Segue minha configuração do iptables.
#!/bin/bash
############################################################################
###################### INICIO DO SCRIPT FIREWALL ###########################
############################################################################
############################################################################
# DEFININDO INTERFACES
############################################################################
extif=eth0
intif=eth1
############################################################################
# ESTABELECENDO REGRAS DO FIREWALL
############################################################################
iptables -F
iptables -F INPUT
iptables -F OUTPUT
iptables -F POSTROUTING -t nat
iptables -F PREROUTING -t nat
iptables -P FORWARD ACCEPT
############################################################################
# COMPARTILHANDO A INTERNET
############################################################################
iptables -t nat -A POSTROUTING -j MASQUERADE
sysctl -w net.ipv4.ip_forward=1
############################################################################
# LIBERANDO PORTAS
############################################################################
iptables -t filter -A INPUT -i eth0 -p tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp --dport 443 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 443 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp --dport 25 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 25 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp --dport 110 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 110 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp --dport 587 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 587 -j ACCEPT
iptables -t filter -A INPUT -i eth0 -p tcp --dport 995 -j ACCEPT
iptables -t filter -A INPUT -i eth1 -p tcp --dport 995 -j ACCEPT
iptables -t filter -A FORWARD -i eth0 -p tcp --dport 25 -j ACCEPT
iptables -t filter -A FORWARD -i eth1 -p tcp --dport 25 -j ACCEPT
se eu dou o comando iptables -L, aparentemente ele me retorna tudo certo:
root@HUMUSNET:~# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:http
ACCEPT tcp -- anywhere anywhere tcp dpt:http
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3
ACCEPT tcp -- anywhere anywhere tcp dpt:submission
ACCEPT tcp -- anywhere anywhere tcp dpt:submission
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3s
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3s
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Mas quando eu passo o portscan, ele me retorna que essas portas não estão respondendo.
Tem alguma outra coisa que possa estar travando minhas portas? pode ser o fato de eu ter instalado no ubuntu desk e não no ubuntu server?
Desde já agradeço a atenção