openwrt通过gre回源
ip tunnel add GRE网卡名 mode gre local 本地LAN IP remote SERVER LAN IP ttl 255
ip link set GRE网卡名 up mtu 1360
ip addr add GRE local IP peer GRE Peer IP dev GRE网卡名
删除
ip link set GRE网卡名 down 2>/dev/null
ip tunnel del GRE网卡名 2>/dev/null
iptable 规则
iptables -t nat -A PREROUTING -d 129.227.148.76 -p tcp --dport 443 -j DNAT --to-destination 120.55.11.124
iptables -t nat -A POSTROUTING -o Linkdns -j MASQUERADE
ip tunnel add GRE网卡名 mode gre local 本地LAN IP remote SERVER LAN IP ttl 255
ip link set GRE网卡名 up mtu 1360
ip addr add GRE local IP peer GRE Peer IP dev GRE网卡名
iptables -t nat -A PREROUTING -d 43.224.64.27 -p tcp --dport 8180 -j DNAT --to-destination 47.111.216.230
iptables -t nat -A POSTROUTING -o Linkdns -j MASQUERADE
iptables -I PREROUTING -t mangle -i eth1 -j MARK --set-mark 0xffbb
ip rule add table 307 pref 32800
ip rout add 47.111.216.230/32 via 100.99.0.12 table 307
ip rule add fwmark 0xffbb table 307
国内侧
ip tunnel add linkdns mode gre local 192.168.9.1 remote 192.168.8.1 ttl 255
ip link set linkdns up mtu 1360
ip addr add 100.100.0.7 peer 100.100.0.8 dev linkdns
香港侧
ip tunnel add Linkdns mode gre local 192.168.8.1 remote 192.168.9.1 ttl 255
ip link set Linkdns up mtu 1360
ip addr add 100.100.0.8 peer 100.100.0.7 dev Linkdns
iptables -I PREROUTING -t mangle -i eth1 -j MARK --set-mark 0xffbb
iptables -t nat -A PREROUTING -d 43.224.64.27 -p tcp --dport 8180 -j DNAT --to-destination 47.111.216.230
iptables -t nat -A PREROUTING -d 43.224.64.27 -p tcp --dport 8086 -j DNAT --to-destination 47.111.216.230
iptables -t nat -A PREROUTING -d 43.224.64.27 -p icmp -j DNAT --to-destination 47.111.216.230
iptables -t nat -A POSTROUTING -o Linkdns -j MASQUERADE
ip rule add table 307 pref 32800
ip rout add 47.111.216.230/32 via 100.100.0.7 table 307
ip rule add fwmark 0xffbb table 307
posted on 2020-12-15 10:08 Lycorisradiata_A 阅读(497) 评论(0) 编辑 收藏 举报
