content.rb in shutter-0.0.7

- old
+ new

@@ -138,15 +138,30 @@
 
 -A DropDDOS ! -d 0.0.0.255/0.0.0.255 -m limit --limit 3/min -j LOG --log-prefix "iptables: DDOS detected:"  
 -A DropDDOS -j DROP
 
 ##################################################################
+# NATing
+##################################################################
+# [RULES:FORWARD]
+-A FORWARD ! -d 0.0.0.255/0.0.0.255 -m limit --limit 3/min -j LOG --log-prefix "iptables: Unauthorized Forward:"
+-A FORWARD -j DROP
+
+##################################################################
 # Add any additional rules that fail2ban has added
 ##################################################################
 # [RULES:FAIL2BAN]
 
 COMMIT
+
+*nat
+:PREROUTING ACCEPT [0:0]
+:POSTROUTING ACCEPT [0:0]
+:OUTPUT ACCEPT [0:0]
+# [RULES:POSTROUTING]
+COMMIT
+
 }
 
 IFACE_DMZ = %q{# Generated by Shutter
 # iface
 # eth0
@@ -172,7 +187,12 @@
 }
 
 PORTS_PRIVATE = %q{
 # proto port
 22    tcp
+}
+
+IFACE_FORWARD = %q{
+# src iface | dst iface
+# eth0 eth1
 }
 end
\ No newline at end of file