=== REGLAS IPTABLES PARA EL ENRUTADO === Chain PREROUTING (policy ACCEPT 91M packets, 60G bytes) num pkts bytes target prot opt in out source destination 1 66M 42G MARCAR_IFACE 0 -- * * 0.0.0.0/0 0.0.0.0/0 2 1409K 162M 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --edk 3 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --dc 4 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --kazaa 5 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --gnu 6 3963K 740M 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --bit 7 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --apple 8 1 1420 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --winmx 9 157 91803 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --soul 10 581 27811 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --ares 11 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --mute 12 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --waste 13 0 0 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --xdcc 14 5373K 902M 0 -- * * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 --ipp2p 15 171K 35M tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1863 16 164K 40M tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:1863 Chain MARCAR_IFACE (1 references) num pkts bytes target prot opt in out source destination 1 66M 42G CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore 2 53M 35G RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0/0xf000 3 13M 7945M MARCAR_IFACE_TRAFICO 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 4 1153K 105M MARK 0 -- wan0 * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 PHYSDEV match --physdev-in eth1 state NEW MARK or 0x8000 5 888K 61M MARK 0 -- wan0 * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 PHYSDEV match --physdev-in eth3 state NEW MARK or 0x4000 6 13M 7945M CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK save 7 13M 7945M RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 Chain MARCAR_IFACE_TRAFICO (1 references) num pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 174M packets, 105G bytes) num pkts bytes target prot opt in out source destination 1 126M 76G MARCAR_IFACE_OUT 0 -- * * 0.0.0.0/0 0.0.0.0/0 2 0 0 tcp -- * wan0 0.0.0.0/0 0.0.0.0/0 tcp dpt:1863 STRING match "takeshi_guanwi_ryu@hotmail.com" ALGO name bm TO 65535 Chain MARCAR_IFACE_OUT (1 references) num pkts bytes target prot opt in out source destination 1 126M 76G CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore 2 111M 63G RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0/0xf000 3 0 0 MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctreplsrc 217.125.139.204 MARK or 0x8000 4 1487K 104M MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctrepldst 217.125.139.204 MARK or 0x8000 5 3096 144K MARK 0 -- * wan0 217.125.139.204 0.0.0.0/0 MARK match 0x0/0xf000 MARK or 0x8000 6 0 0 MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctorigsrc 217.125.139.204 MARK or 0x8000 7 0 0 MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctorigdst 217.125.139.204 MARK or 0x8000 8 2 104 MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctreplsrc 80.32.61.58 MARK or 0x4000 9 1463K 103M MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctrepldst 80.32.61.58 MARK or 0x4000 10 3346 142K MARK 0 -- * wan0 80.32.61.58 0.0.0.0/0 MARK match 0x0/0xf000 MARK or 0x4000 11 0 0 MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctorigsrc 80.32.61.58 MARK or 0x4000 12 0 0 MARK 0 -- * wan0 0.0.0.0/0 0.0.0.0/0 MARK match 0x0/0xf000 ctorigdst 80.32.61.58 MARK or 0x4000 13 15M 13G CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK save 14 15M 13G RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 === REGLAS DE ENRUTAMIENTO === 0: from all lookup local 50: from all lookup main 100: from all fwmark 0x8000/0xf000 lookup uno 101: from all fwmark 0x4000/0xf000 lookup dos 150: from 217.125.139.204/26 lookup uno 151: from 80.32.61.58/24 lookup dos 200: from all lookup defecto 32766: from all lookup main 32767: from all lookup default === TABLAS DE RUTAS === === MAIN === 217.125.139.192/26 dev wan0 proto kernel scope link src 217.125.139.204 80.32.61.0/24 dev wan0 proto kernel scope link src 80.32.61.58 192.168.3.0/24 dev zlan0 proto kernel scope link src 192.168.3.247 192.168.2.0/24 dev zlan0 proto kernel scope link src 192.168.2.247 192.168.1.0/24 dev zlan0 proto kernel scope link src 192.168.1.247 10.1.1.0/24 dev zlan0 proto kernel scope link src 10.1.1.6 169.254.0.0/16 dev zlan0 scope link 239.0.0.0/8 dev zlan0 scope link === wan0 TABLA 150 === default via 217.125.139.193 dev wan0 proto static src 217.125.139.204 prohibit default proto static metric 1 === wan0 TABLA 151 === default via 80.32.61.1 dev wan0 proto static src 80.32.61.58 prohibit default proto static metric 1 === TABLA 200 (defecto) === default proto static nexthop via 217.125.139.193 dev wan0 weight 1 nexthop via 80.32.61.1 dev wan0 weight 1