Re: Simple IPTables help
From: Timo Voipio (tvoipio+newsharvest_at_iki.fi)
Date: 08/05/03
- Next message: Ed: "Re: root equivalent user"
- Previous message: Job Eisses: "Re: root equivalent user"
- In reply to: /dev/rob0: "Re: Simple IPTables help"
- Next in thread: Jason Gauthier: "Re: Simple IPTables help"
- Reply: Jason Gauthier: "Re: Simple IPTables help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 06 Aug 2003 00:56:07 +0300
/dev/rob0 wrote:
> 1. ACCEPT the RELATED,ESTABLISHED packets both ways.
> 2. -p tcp --dport 22 -s A -d B -j ACCEPT
> 3. -p tcp --dport 80 -s B -d A -j ACCEPT
> 4. default policy to DROP, or a -j DROP rule
I'd add step 0: DROP the INVALID packets from anywhere.
-Timo
-- Timo Voipio | Helsinki, Finland | ICBM at: 60 11.800 N 024 52.760 E GeekCode ver 3: GU>CC d s-: a--- C++ UL(+)$>+++$ P+>+++ L++(+) E- W++ N++ o? K? w O M- V- PS PE Y+ PGP+ t 5++ X R tv- b++(++++) DI+ D G e- h! r !y Remove +newsharvested to e-mail me | Poista +newsharvested jos meilaat
- Next message: Ed: "Re: root equivalent user"
- Previous message: Job Eisses: "Re: root equivalent user"
- In reply to: /dev/rob0: "Re: Simple IPTables help"
- Next in thread: Jason Gauthier: "Re: Simple IPTables help"
- Reply: Jason Gauthier: "Re: Simple IPTables help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
