Open main menu

CDOT Wiki β

Changes

OPS335 Firewall Lab

No change in size, 11:24, 25 May 2012
Building a Simple Firewall on VM1
#Add a rule to the INPUT chain of the filter table that allows all new tcp ssh connections.
#Make a new chain named MYICMP in the filter table.
#Add a rule to the INPUT chain of the filter table to send ICMP ping packets to your MYICMP chain.
#Add a rule to your MYICMP chain that denies ICMP pings from 192.168.X.1 (your Fedora host).
#Add a rule to your MYICMP chain that denies ICMP pings originating with MAC address of Fedora host's virbr0.
#Add a rule to your MYICMP chain that allows ICMP pings from anywhere.
#Add a rule to the INPUT chain of the filter table to send ICMP ping packets to your MYICMP chain.
#Change the default policy on the INPUT chain in the filter table to DROP.