932
edits
Changes
m
Minor clarifications to iptables instructions
#Add a rule to the INPUT chain of the filter table to allow all ESTABLISHED and RELATED incoming connections.
#Create a new chain named MYSSH in the filter table.
#Add a rule to the beginning of the INPUT chain of your filter table that sends all tcp packets with destination port 22 to your MYSSH chain.
#Add a rule to your MYSSH chain to deny all traffic from 192.168.X.1 (i.e. your host). Also log these denied packets with log level 'info' and log prefix "DENIED BY MYSSH".
#Add a rule to the end of the INPUT chain of the filter table that allows all new tcp ssh connections.
#Make a new chain named MYICMP in the filter table.
#Add a rule to the beginning of the INPUT chain of the filter table to send ICMP ping packets to your MYICMP chain.
#Add a rule to your MYICMP chain that denies ICMP pings from 192.168.X.1 (your host).
#Add a rule to your MYICMP chain that denies ICMP pings originating with MAC address of the host's virbr0.
