Ponywka/MagiTrickle
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

remove some remarks

Browse Source
This commit is contained in:
Vladimir Avtsenov 2024-09-05 05:42:43 +03:00
parent 0b43814c07
commit be4f6c4137
1 changed files with 3 additions and 52 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

55
README.md
View File

@ -6,72 +6,23 @@ Realized features:
- [x] DNS Proxy (UDP) - [x] DNS Proxy (UDP)
- [ ] DNS Proxy (TCP) - [ ] DNS Proxy (TCP)
- [x] Records memory - [x] Records memory
- [x] IPTables rules for rebind DNS server port [1] - [x] IPTables rules for rebind DNS server port
- [X] IPSet integration - [X] IPSet integration
- [X] IP integration - [X] IP integration
- [X] IPTables rules to IPSet [2] - [X] IPTables rules to IPSet
- [ ] Rule composer (CRUD) - [ ] Rule composer (CRUD)
- [ ] GORM integration - [ ] GORM integration
- [X] Listing of interfaces - [X] Listing of interfaces
- [ ] HTTP API - [ ] HTTP API
- [ ] HTTP GUI - [ ] HTTP GUI
- [ ] CLI - [ ] CLI
- [ ] (Keenetic) Support for custom interfaces [3] - [ ] (Keenetic) Support for custom interfaces [1]
- [ ] It is not a concept now... REFACTORING TIME!!! - [ ] It is not a concept now... REFACTORING TIME!!!
- [ ] (Keenetic) Getting readable names of interfaces from Keenetic NDMS - [ ] (Keenetic) Getting readable names of interfaces from Keenetic NDMS
- [ ] HTTP Auth - [ ] HTTP Auth
[1] Example [1] Example
```bash ```bash
KVAS2_NAME=KVAS2
KVAS2_DNS_PORT=7548
# Создание правил
iptables -t nat -N ${KVAS2_NAME}_DNSOVERRIDE_PREROUTING
iptables -t nat -A ${KVAS2_NAME}_DNSOVERRIDE_PREROUTING -p udp --dport 53 -j REDIRECT --to-port ${KVAS2_DNS_PORT}
# Применение правил
iptables -t nat -I PREROUTING 1 -j ${KVAS2_NAME}_DNSOVERRIDE_PREROUTING
# Удаление правил
iptables -t nat -D PREROUTING -j ${KVAS2_NAME}_DNSOVERRIDE_PREROUTING
iptables -t nat -F ${KVAS2_NAME}_DNSOVERRIDE_PREROUTING
iptables -t nat -X ${KVAS2_NAME}_DNSOVERRIDE_PREROUTING
```
[2] Example
```bash
KVAS2_NAME=KVAS2
IPSET_TABLE=kvas2
MARK=1
TABLE=100
INTERFACE=ovpn_br0
# Создание правил
iptables -t mangle -N ${KVAS2_NAME}_ROUTING_PREROUTING
iptables -t nat -N ${KVAS2_NAME}_ROUTING_POSTROUTING
iptables -t mangle -A ${KVAS2_NAME}_ROUTING_PREROUTING -m set --match-set ${IPSET_TABLE} dst -j MARK --set-mark ${MARK}
iptables -t nat -A ${KVAS2_NAME}_ROUTING_POSTROUTING -o ${INTERFACE} -j MASQUERADE
# Применение правил
ip rule add fwmark ${MARK} table ${TABLE}
ip route add default dev ${INTERFACE} table ${TABLE}
iptables -t mangle -A PREROUTING -j ${KVAS2_NAME}_ROUTING_PREROUTING
iptables -t nat -A POSTROUTING -j ${KVAS2_NAME}_ROUTING_POSTROUTING
# Удаление правил
ip rule del fwmark ${MARK} table ${TABLE}
ip route del default dev ${INTERFACE} table ${TABLE}
iptables -t mangle -D PREROUTING -j ${KVAS2_NAME}_ROUTING_PREROUTING
iptables -t mangle -F ${KVAS2_NAME}_ROUTING_PREROUTING
iptables -t mangle -X ${KVAS2_NAME}_ROUTING_PREROUTING
iptables -t nat -D POSTROUTING -j ${KVAS2_NAME}_ROUTING_POSTROUTING
iptables -t nat -F ${KVAS2_NAME}_ROUTING_POSTROUTING
iptables -t nat -X ${KVAS2_NAME}_ROUTING_POSTROUTING
```
[3] Example
```bash
INTERFACE=ovpn_br0 INTERFACE=ovpn_br0
iptables -A _NDM_SL_FORWARD -o ${INTERFACE} -m state --state NEW -j _NDM_SL_PROTECT iptables -A _NDM_SL_FORWARD -o ${INTERFACE} -m state --state NEW -j _NDM_SL_PROTECT
``` ```