#!/bin/bash

# Sample startup script for countertrace
# http://michael.toren.net/code/countertrace/
# mct, Sun Jul 14 13:32:06 EDT 2002

# List of addresses not to fake traceroutes for, so that if the
# countertrace program dies for any reason, we can still remotely
# access the box from these locations.
BACKDOORS="207.8.132.194 207.8.132.210 207.106.130.90"

killall countertrace

modprobe iptable_filter
modprobe ip_queue
modprobe ipt_ttl

iptables -F INPUT
iptables -P INPUT ACCEPT
iptables -A INPUT -i lo -j ACCEPT
for i in $BACKDOORS; do iptables -A INPUT --source $i -j ACCEPT; done
iptables -A INPUT -j QUEUE

countertrace example-hops-configuration | logger -t countertrace &
sleep 1