natbox-spec-surge.rcS revision 1648
11196Shsul@eecs.umich.edu#!/bin/sh 21196Shsul@eecs.umich.eduEXTIF=192.168.0.7 31196Shsul@eecs.umich.eduINTIF=10.0.0.1 41196Shsul@eecs.umich.eduCLIENT=10.0.0.2 51196Shsul@eecs.umich.edu 61196Shsul@eecs.umich.eduecho "setting up network..." 71196Shsul@eecs.umich.eduifconfig lo 127.0.0.1 81196Shsul@eecs.umich.eduifconfig eth0 $EXTIF txqueuelen 1000 91196Shsul@eecs.umich.eduifconfig eth1 $INTIF txqueuelen 1000 101196Shsul@eecs.umich.edu 111196Shsul@eecs.umich.eduecho "0" > /proc/sys/net/ipv4/tcp_timestamps 121196Shsul@eecs.umich.eduecho "0" > /proc/sys/net/ipv4/tcp_sack 131362Shsul@eecs.umich.eduecho "1" > /proc/sys/net/ipv4/tcp_vegas_cong_avoid 141648Sbinkertn@umich.eduecho "262144" > /proc/sys/net/ipv4/ip_conntrack_max 151196Shsul@eecs.umich.eduecho "5000000 5000000 5000000" > /proc/sys/net/ipv4/tcp_rmem 161196Shsul@eecs.umich.eduecho "5000000 5000000 5000000" > /proc/sys/net/ipv4/tcp_wmem 171196Shsul@eecs.umich.eduecho "5000000 5000000 5000000" > /proc/sys/net/ipv4/tcp_mem 181196Shsul@eecs.umich.eduecho "262143" > /proc/sys/net/core/rmem_max 191196Shsul@eecs.umich.eduecho "262143" > /proc/sys/net/core/wmem_max 201196Shsul@eecs.umich.eduecho "262143" > /proc/sys/net/core/rmem_default 211196Shsul@eecs.umich.eduecho "262143" > /proc/sys/net/core/wmem_default 221196Shsul@eecs.umich.eduecho "262143" > /proc/sys/net/core/optmem_max 231196Shsul@eecs.umich.eduecho "100000" > /proc/sys/net/core/netdev_max_backlog 241196Shsul@eecs.umich.edu 251196Shsul@eecs.umich.eduecho "1" > /proc/sys/net/ipv4/ip_forward 261196Shsul@eecs.umich.edu 271645Srdreslin@umich.eduecho "262144" > /proc/sys/net/ipv4/ip_conntrack_max 281645Srdreslin@umich.edu 291196Shsul@eecs.umich.eduecho "waiting for netserver..." 301196Shsul@eecs.umich.edu/usr/bin/netcat -c -l -p 8000 311196Shsul@eecs.umich.edu 321196Shsul@eecs.umich.eduecho "setting up iptables..." 331196Shsul@eecs.umich.eduIPTABLES=/sbin/iptables 341196Shsul@eecs.umich.eduEXTIF=eth0 351196Shsul@eecs.umich.eduINTIF=eth1 361196Shsul@eecs.umich.edu 371196Shsul@eecs.umich.edu$IPTABLES -P INPUT ACCEPT 381196Shsul@eecs.umich.edu$IPTABLES -F INPUT 391196Shsul@eecs.umich.edu$IPTABLES -P OUTPUT ACCEPT 401196Shsul@eecs.umich.edu$IPTABLES -F OUTPUT 411196Shsul@eecs.umich.edu$IPTABLES -P FORWARD DROP 421196Shsul@eecs.umich.edu$IPTABLES -F FORWARD 431196Shsul@eecs.umich.edu$IPTABLES -t nat -F 441196Shsul@eecs.umich.edu 451196Shsul@eecs.umich.edu$IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT 461196Shsul@eecs.umich.edu$IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT 471196Shsul@eecs.umich.edu$IPTABLES -A FORWARD -j LOG 481196Shsul@eecs.umich.edu 491196Shsul@eecs.umich.edu$IPTABLES -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE 501196Shsul@eecs.umich.edu 511196Shsul@eecs.umich.eduecho "informing client..." 521648Sbinkertn@umich.edusleep 5 531196Shsul@eecs.umich.eduecho "server ready" | /usr/bin/netcat -c $CLIENT 8000 541196Shsul@eecs.umich.edu 551196Shsul@eecs.umich.eduecho "starting bash..." 561196Shsul@eecs.umich.eduexec /bin/bash 57