|
|
(One intermediate revision by the same user not shown) |
Line 1: |
Line 1: |
− | <b><big><big>Installing and Configuring Firewall</big></big></b>
| |
| | | |
− |
| |
− | <b><big>Introduction</big></b>
| |
− |
| |
− | <font face="Georgia">In this page, you are going to create a firewall that allows only outside world view the web page in your server
| |
− | </font>
| |
− |
| |
− |
| |
− | <b><big>Instruction</big></b>
| |
− | #Login as root user
| |
− | #Clear up the rules in your iptables: <b><code><font color=green >iptables -F</font></code></b>
| |
− | #Change the input chain default policy to drop: <b><code><font color=green >iptables -P INPUT DROP</font></code></b>
| |
− | #Create a rule that allow outside to access http port only: <b><code><font color=green >iptables -I INPUT -p tcp --dport http -j ACCEPT</font></code></b>
| |
− | #Change the input chain default policy to drop: <b><code><font color=green >iptables -P OUTPUT DROP</font></code></b>
| |
− | #Create a rule that allow packets to output from http port only: <b><code><font color=green > iptables -I OUTPUT -p tcp --sport http -j ACCEPT</font></code></b>
| |
− | #View your web page from other virtual machine. The web page should be displayed.
| |
− | #Try to <b>ssh</b> and <b>ping</b> from virtual machine to your server. All connections should be blocked.
| |
− | #Save your iptables rules: <b><code><font color=green >service iptables save</font></code></b>
| |
− |
| |
− |
| |
− |
| |
− |
| |
− |
| |
− | [[File:Fat penguin2.jpg]]
| |