Биллинговая система Nodeny

echo "REDIRECT на заглушку"
$IPT -w -t nat -N redirect
$IPT -w -t nat -A redirect -m set --match-set $nodeny_list src -j RETURN # выводим тех кому разрешен доступ 
$IPT -w -t nat -A redirect -m set --match-set $liqpay_list dst -j RETURN
$IPT -w -t nat -A redirect -d $no_redirect_ip,$redirect_ip,$REAL_IP -j RETURN
$IPT -w -t nat -A redirect -p tcp -j DNAT --to-destination $redirect_ip:8080 # порт заглушки
$IPT -w -t nat -A redirect -p udp -j DNAT --to-destination $redirect_ip:8080

$IPT -w -t nat -I PREROUTING -s $clients_ippool -j redirect

$IPT -F
$IPT -F -t nat
$IPT -X

$IPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
$IPT -A INPUT -i lo -j ACCEPT

$IPT -A FORWARD -s 0/0 -d 172.22.0.0/21 -j ACCEPT
$IPT -A FORWARD -d 0/0 -s 172.22.0.0/21 -j ACCEPT

$IPT -t nat -A PREROUTING -p tcp -m set --match-set $ACC_DISABLE src -m set ! --match-set $PAYSYSTEM dst -j DNAT --to-destination $IP_ZAGLUSHKI:8080
$IPT -t nat -A POSTROUTING -m set --match-set $ACC_DISABLE src -m set --match-set $PAYSYSTEM dst -j SNAT --to-source $WAN_IP

<VirtualHost *:8080>

RewriteEngine on
RedirectMatch 302 ^(.*)$ h__ps://*.*.*.*/cgi-bin/cap.pl

</VirtualHost>