Iptables: Difference between revisions
Jump to navigation
Jump to search
(Created page with "# !/bin/sh # apt-get update # apt-get install iptables # apt-get install iptables-persistent iptables -V iptables -I INPUT -p tcp -s 192.168.10.202 -j ACCEPT iptables -A INPUT -p tcp --dport 80 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p tcp --dport 443 -j ACCEPT iptables -A INPUT -p tcp --dport 1912 -j ACCEPT iptables -A INPUT -p tcp --dport 3306 -j ACCEPT iptables -A INPUT -p tcp --dport 5432 -j ACCEPT iptables -A INPUT -p tcp -s 192.16...") |
No edit summary |
||
| Line 1: | Line 1: | ||
# !/bin/sh | # !/bin/sh | ||
# apt-get update | # apt-get update | ||
# apt-get install iptables | # apt-get install iptables | ||
# apt-get install iptables-persistent | # apt-get install iptables-persistent | ||
iptables -V | iptables -V | ||
iptables -I INPUT -p tcp -s 192.168.10.202 -j ACCEPT | iptables -I INPUT -p tcp -s 192.168.10.202 -j ACCEPT | ||
iptables -A INPUT -p tcp --dport 80 -j ACCEPT | iptables -A INPUT -p tcp --dport 80 -j ACCEPT | ||
iptables -A INPUT -p tcp --dport 22 -j ACCEPT | iptables -A INPUT -p tcp --dport 22 -j ACCEPT | ||
iptables -A INPUT -p tcp --dport 443 -j ACCEPT | iptables -A INPUT -p tcp --dport 443 -j ACCEPT | ||
iptables -A INPUT -p tcp --dport 1912 -j ACCEPT | iptables -A INPUT -p tcp --dport 1912 -j ACCEPT | ||
iptables -A INPUT -p tcp --dport 3306 -j ACCEPT | iptables -A INPUT -p tcp --dport 3306 -j ACCEPT | ||
iptables -A INPUT -p tcp --dport 5432 -j ACCEPT | iptables -A INPUT -p tcp --dport 5432 -j ACCEPT | ||
iptables -A INPUT -p tcp -s 192.168.10.0/24 -j DROP | iptables -A INPUT -p tcp -s 192.168.10.0/24 -j DROP | ||
iptables -L | iptables -L | ||
# iptables-save > /etc/iptables/rules.v4 | # iptables-save > /etc/iptables/rules.v4 | ||
# systemctl enable iptables-persistent | # systemctl enable iptables-persistent | ||
# service iptables-persistent start | # service iptables-persistent start | ||
# blok port 22 dari ip 192.168.10.0/24 | # blok port 22 dari ip 192.168.10.0/24 | ||
echo "sshd: 192.168.10.0/255.255.255.0" >> /etc/hosts.deny | echo "sshd: 192.168.10.0/255.255.255.0" >> /etc/hosts.deny | ||
# open port 22 dari ip 192.168.10.202 | # open port 22 dari ip 192.168.10.202 | ||
echo "sshd: 192.168.10.202" >> /etc/hosts.allow | echo "sshd: 192.168.10.202" >> /etc/hosts.allow | ||
# open port 22 dari ip 192.168.10.36 | # open port 22 dari ip 192.168.10.36 | ||
echo "sshd: 192.168.10.36" >> /etc/hosts.allow | echo "sshd: 192.168.10.36" >> /etc/hosts.allow | ||
# open port 22 dari ip 192.168.10.29 | # open port 22 dari ip 192.168.10.29 | ||
echo "sshd: 192.168.10.29" >> /etc/hosts.allow | echo "sshd: 192.168.10.29" >> /etc/hosts.allow | ||
echo "sshd: 192.168.10.19" >> /etc/hosts.allow | echo "sshd: 192.168.10.19" >> /etc/hosts.allow | ||
Revision as of 08:58, 26 January 2024
# !/bin/sh # apt-get update # apt-get install iptables # apt-get install iptables-persistent iptables -V iptables -I INPUT -p tcp -s 192.168.10.202 -j ACCEPT iptables -A INPUT -p tcp --dport 80 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p tcp --dport 443 -j ACCEPT iptables -A INPUT -p tcp --dport 1912 -j ACCEPT iptables -A INPUT -p tcp --dport 3306 -j ACCEPT iptables -A INPUT -p tcp --dport 5432 -j ACCEPT iptables -A INPUT -p tcp -s 192.168.10.0/24 -j DROP iptables -L # iptables-save > /etc/iptables/rules.v4 # systemctl enable iptables-persistent # service iptables-persistent start # blok port 22 dari ip 192.168.10.0/24 echo "sshd: 192.168.10.0/255.255.255.0" >> /etc/hosts.deny # open port 22 dari ip 192.168.10.202 echo "sshd: 192.168.10.202" >> /etc/hosts.allow # open port 22 dari ip 192.168.10.36 echo "sshd: 192.168.10.36" >> /etc/hosts.allow # open port 22 dari ip 192.168.10.29 echo "sshd: 192.168.10.29" >> /etc/hosts.allow echo "sshd: 192.168.10.19" >> /etc/hosts.allow