#!/bin/bash
#

## Firewall Script
#  01-07-26  by Erik Wegner
#  pop3-forward <InternalInterface> <ExternalInterface>
#

INT=$1  # InternalInterface
EXT=$2  # ExternalInterface

if test -z $1 || test -z $2 ; then
	echo "pop3-forward <InternalInterface> <ExternalInterface>"
	echo "e.g.: pop3-forward eth0 ppp0"
	exit 2
fi

# Pfad zu IPTables
if test -z $IPTABLES ; then
	IPTABLES=/usr/sbin/iptables
fi

## Ports
#  Nicht-privilegierte = 1024-65535
P_HIGH=1024:65535
P_POP3=110
P_SECPOP3=995

echo -e "\n# POP3-Forward $INT[$P_HIGH] -> $EXT[$P_POP3]"
echo "$IPTABLES -A FORWARD -o $EXT -i $INT -m state --state NEW \\"
echo "	-p TCP --sport $P_HIGH --dport $P_POP3 \\"
echo "	-j ACCEPT"

echo -e "\n# POP3-Forward $INT[$P_HIGH] -> $EXT[$P_SECPOP3]"
echo "$IPTABLES -A FORWARD -o $EXT -i $INT -m state --state NEW \\"
echo "  -p TCP --sport $P_HIGH --dport $P_SECPOP3 \\"
echo "  -j ACCEPT"
