Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

Centos iptables Settin

2025-02-28 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

# # save as / etc/sysconfig/iptables,then / etc/init.d/iptables restart | start

# Firewall configuration written by redhat-config-securitylevel

* filter

: INPUT DROP [0:0]

: FORWARD ACCEPT [0:0]

: OUTPUT ACCEPT [0:0]

: RH-Firewall-1-INPUT-[0:0]

-An INPUT-j RH-Firewall-1-INPUT

-A FORWARD-j RH-Firewall-1-INPUT

-A RH-Firewall-1-INPUT-I lo-j ACCEPT

-A RH-Firewall-1-INPUT-p icmp--icmp-type any-j ACCEPT

-A RH-Firewall-1-INPUT-p tcp- m tcp--tcp-flags FIN,SYN FIN,SYN-j DROP

-A RH-Firewall-1-INPUT-m state-- state ESTABLISHED,RELATED-j ACCEPT

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 22-j ACCEPT

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 2222-j ACCEPT

#

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 80-j ACCEPT

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 443-j ACCEPT

#

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 3306-j ACCEPT

#

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 8081-j ACCEPT

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 8088-j ACCEPT

#

-A RH-Firewall-1-INPUT-m state-- state NEW-m tcp-p tcp-- dport 53-j ACCEPT

-A RH-Firewall-1-INPUT-m state-- state NEW-m udp-p udp-- dport 53-j ACCEPT

#

-A RH-Firewall-1-INPUT-s xxx.xxx.xxx.xxx-j ACCEPT

#

-A RH-Firewall-1-INPUT-p tcp-m state-- state NEW-m tcp-s-- dport 6666-j ACCEPT

-A RH-Firewall-1-INPUT-p tcp-m state-- state NEW-m tcp-s xxx.xxx.xxx.xxx-- dport port1-j ACCEPT

#

#

-A RH-Firewall-1-INPUT-j REJECT-- reject-with icmp-host-prohibited

COMMIT

#

In fact, it is recommended to add relevant rules and take effect in the following ways:

Iptables-t nat-A POSTROUTING-s 10.1.1.1 Universe 24-j MASQUERADE

# the above rules will be updated to the [/ etc/sysconfig/iptables] file

/ etc/init.d/iptables save

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Rules suggestions documents methods for update vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Docker vpn Shulou Technology Shulou Tech Info Apple Xiaomi MySQL Shulou Information macOS Huawei Linux Redmi Microsoft OPPO Reno NVidia MariaDB Docker vpn Shulou Technology Shulou Tech Info Apple Xiaomi MySQL Shulou Information macOS Huawei Linux Redmi Microsoft OPPO Reno NVidia MariaDB

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report