Open main menu

CDOT Wiki β

Changes

Tung iptables conf

1,256 bytes removed, 23:13, 30 July 2011
Blanked the page
<b><big><big>Installing and Configuring Firewall</big></big></b>
 
<b><big>Introduction</big></b>
 
<font face="Georgia">In this page, you are going to create a firewall that allows outside world to access your web page in the server
</font>
 
 
<b><big>Instruction</big></b>
#Login as root user
#Clear up the rules in your iptables: <b><code><font color=green >iptables -F</font></code></b>
#Change the input chain default policy to drop: <b><code><font color=green >iptables -P INPUT DROP</font></code></b>
#Create a rule that allow outside to access http port only: <b><code><font color=green >iptables -I INPUT -p tcp --dport http -j ACCEPT</font></code></b>
#Change the input chain default policy to drop: <b><code><font color=green >iptables -P OUTPUT DROP</font></code></b>
#Create a rule that allow packets to output from http port only: <b><code><font color=green > iptables -I OUTPUT -p tcp --sport http -j ACCEPT</font></code></b>
#View your web page from other virtual machine. The web page should be displayed.
#Try to <b>ssh</b> and <b>ping</b> from virtual machine to your server. All connections should be blocked.
#Save your iptables rules: <b><code><font color=green >service iptables save</font></code></b>
 
 
 
 
 
[[File:Fat penguin2.jpg]]
1
edit