Iptables

From Server STB
Revision as of 08:57, 26 January 2024 by Admin (talk | contribs) (Created page with "# !/bin/sh # apt-get update # apt-get install iptables # apt-get install iptables-persistent iptables -V iptables -I INPUT -p tcp -s 192.168.10.202 -j ACCEPT iptables -A INPUT -p tcp --dport 80 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p tcp --dport 443 -j ACCEPT iptables -A INPUT -p tcp --dport 1912 -j ACCEPT iptables -A INPUT -p tcp --dport 3306 -j ACCEPT iptables -A INPUT -p tcp --dport 5432 -j ACCEPT iptables -A INPUT -p tcp -s 192.16...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
  1. !/bin/sh
  2. apt-get update
  3. apt-get install iptables
  4. apt-get install iptables-persistent

iptables -V iptables -I INPUT -p tcp -s 192.168.10.202 -j ACCEPT iptables -A INPUT -p tcp --dport 80 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p tcp --dport 443 -j ACCEPT iptables -A INPUT -p tcp --dport 1912 -j ACCEPT iptables -A INPUT -p tcp --dport 3306 -j ACCEPT iptables -A INPUT -p tcp --dport 5432 -j ACCEPT iptables -A INPUT -p tcp -s 192.168.10.0/24 -j DROP iptables -L

  1. iptables-save > /etc/iptables/rules.v4
  2. systemctl enable iptables-persistent
  3. service iptables-persistent start
  4. blok port 22 dari ip 192.168.10.0/24

echo "sshd: 192.168.10.0/255.255.255.0" >> /etc/hosts.deny

  1. open port 22 dari ip 192.168.10.202

echo "sshd: 192.168.10.202" >> /etc/hosts.allow

  1. open port 22 dari ip 192.168.10.36

echo "sshd: 192.168.10.36" >> /etc/hosts.allow

  1. open port 22 dari ip 192.168.10.29

echo "sshd: 192.168.10.29" >> /etc/hosts.allow echo "sshd: 192.168.10.19" >> /etc/hosts.allow

Retrieved from "http://wiki.serverstb.com/index.php?title=Iptables&oldid=374"