1,760
edits
Changes
→Building a Simple Firewall on VM1
#Create a new chain named MYSSH in the filter table.
#Add a rule to the INPUT chain of your filter table that sends all tcp packets with destination port 22 to your MYSSH chain.
#Add a rule to your MYSSH chain to deny all traffic from 142192.204168.141122.XXX 1 (XXX is the PC beside youi.e. your Fedora host). Also log these denied packets with log level 'info'.
#Add a rule to the INPUT chain of the filter table that allows all new tcp ssh connections.
#Make a new chain named MYICMP in the filter table.
#Add a rule to your MYICMP chain that denies ICMP pings from 142192.204168.141122.XXX 1 (the PC beside youyour Fedora host).#Add a rule to your MYICMP chain that denies ICMP pings originating with MAC address of 00:22:33:44:55:66 (NOTE: to test this youFedora host'll have to change the MAC address of the PC beside you with the ifconfig command)s virbr0.
#Add a rule to your MYICMP chain that allows ICMP pings from anywhere.
#Add a rule to the INPUT chain of the filter table to send ICMP ping packets to your MYICMP chain.