Last active
May 2, 2023 11:21
-
-
Save LuisPalacios/c10af93c6d3be7b1c5796899ad57d3f4 to your computer and use it in GitHub Desktop.
Script para cerrar el puerto 80 y port forwarding a mi Nginx
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # Para crear/renovar certificados SSL necesito que Let's Encrypt pueda hablar con | |
| # el Web Server temporal que "Nginx Proxy Manager". Este script cierra el puerto 80 | |
| # y su redirección a mi máquina virtual donde ejecuto NPM. | |
| # | |
| # Este script está refereciado en el apunte: | |
| # https://www.luispa.com/administración/2023/04/08/networking-avanzado.html | |
| # | |
| IP=192.168.100.243 | |
| HOST="npm.tudominio.com" | |
| echo | |
| iptables -t nat -C PREROUTING -i ppp0 -p tcp -m multiport --dports 80 -j DNAT --to-destination ${IP} 2>/dev/null | |
| if [ $? != 0 ] ; then | |
| echo "El PREROUTING a ${HOST} ya estaba cerrado" | |
| else | |
| iptables -t nat -D PREROUTING -i ppp0 -p tcp -m multiport --dports 80 -j DNAT --to-destination ${IP} | |
| echo "He cerrado el PREROUTING a ${HOST}" | |
| fi | |
| iptables -C FORWARD -p tcp -m multiport --dports 80 -d ${IP} -j ACCEPT 2>/dev/null | |
| if [ $? != 0 ] ; then | |
| echo "El FORWARD a ${HOST} ya estaba cerrado" | |
| else | |
| iptables -D FORWARD -p tcp -m multiport --dports 80 -d ${IP} -j ACCEPT | |
| echo "He cerrado el FORWARD a ${HOST}" | |
| fi | |
| # Comprobar | |
| #iptables -t nat --list PREROUTING | grep DNAT | |
| #iptables --list FORWARD -n -v | head | grep "80" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment