#!/bin/bash
#

## Firewall Script
#  01-07-26  by Erik Wegner
#  http-up <ExternalInterface>
#

EXT=$1  

if test -z $1 ; then
	echo "http-up <ExternalInterface>"
	echo "e.g.: http-up ippp0"
	exit 2
fi

# Pfad zu IPTables
if test -z $IPTABLES ; then
	IPTABLES=/usr/sbin/iptables
fi

## Ports
#  Nicht-privilegierte = 1024-65535
P_HIGH=1024:65535
P_FS=3440:3493

echo -e "\n#Halflife $EXT [$P_HL] <-> [$P_HIGH]"

#echo "$IPTABLES -A OUTPUT -p UDP -o $EXT \\
#	--sport $P_HIGH \\
# 	--dport $P_HL -j ACCEPT"

#echo "$IPTABLES -A INPUT -p UDP -i $EXT \\
#	--sport $P_HL \\
#	--dport $P_HIGH -j ACCEPT"

echo "$IPTABLES -A FORWARD -p UDP \\
	--sport $P_HIGH \\
	--dport $P_FS -j ACCEPT"

#echo "$IPTABLES -A INPUT -p UDP --dport $P_HL --syn -j my_drop"

#echo "$IPTABLES -A OUTPUT -p TCP -o $EXT \\
#	--sport $P_HIGH \\
#	--dport $P_HL2 -j ACCEPT"
	
#echo "$IPTABLES -A INPUT -p TCP -i $EXT \\
#	--sport $P_HL2 \\
#	--dport $P_HIGH -j ACCEPT"

#echo "$IPTABLES -A FORWARD -p TCP \\
#	--dport $P_HL2 \\
#	--sport $P_HIGH -j ACCEPT"

