FIREWALL EXTERNO

>:D PUTAS REGLAS 01/10/2023

iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o enp0s8 -j MASQUERADE

sudo iptables -t nat -A PREROUTING -p tcp -i enp0s3 --dport 222 -j DNAT --to-
destination 192.168.0.142
sudo iptables -t nat -A POSTROUTING -j MASQUERADE

Reglas puestas y que funcionan:

root@cortafuegosredoficina:/home/cortafuegosredoficina# iptables -t nat -S

-P PREROUTING ACCEPT
-P INPUT ACCEPT
-P OUTPUT ACCEPT
-P POSTROUTING ACCEPT
-A PREROUTING -i enp0s3 -p tcp -m tcp --dport 222 -j DNAT --to-destination
192.168.0.142
-A POSTROUTING -s 192.168.1.0/24 -o enp0s8 -j MASQUERADE
-A POSTROUTING -j MASQUERADE

FIREWALL INTERNO
enp0s3 192.168.1.254
enp0s8 172.168.0.100

# La oficina accede al servidor

iptables -A INPUT -i enp0s3 --sport 22 -d 172.168.0.100/24 -j ACCEPT
iptables -A OUTPUT -o enp0s3 -s 172.168.0.100/24 -j ACCEPT

# Elastic/agentes
iptables -A INPUT -i enp0s3 -p tcp --dport 9200 -d 172.168.0.8/24 -j ACCEPT
//iptables -A OUTPUT -o enp0s3 -s 172.168.0.8/24 -j ACCEPT

# Kibana
/*
iptables -A INPUT -s 192.168.1.6/24 -dport 5601 -d 172.168.0.8/24 -o enp0s8 -j
ACCEPT
*/
iptables -A INPUT -i enp0s3 -p tcp --dport 5601 -d 172.168.0.8/24 -j ACCEPT