Ignore:
Timestamp:
Mar 10, 2007, 2:04:50 AM (18 years ago)
Author:
presbrey
Message:
block open portmap ports
File:
1 edited

Legend:

Unmodified
Added
Removed
  • server/fedora/config/etc/sysconfig/iptables

    r203 r213  
    2020*filter
    2121:INPUT ACCEPT [292118:164733476]
    22 -A INPUT -p tcp -m tcp --dport 5666 -s ! 18.187.1.128/255.255.255.255 -j DROP
    23 -A INPUT -p tcp -m tcp --dport 199 -s ! 18.187.1.128/255.255.255.255 -j DROP
    24 -A INPUT -p udp -m udp --dport 161 -s ! 18.187.1.128/255.255.255.255 -j DROP
    25 -A INPUT -p tcp -m tcp -m multiport --dports 613,944,1004,2049 -s 18.181.0.53/255.255.255.255 -j ACCEPT
    26 -A INPUT -p tcp -m tcp -m multiport --dports 613,944,1004,2049 -s 18.181.0.57/255.255.255.255 -j ACCEPT
    27 -A INPUT -p tcp -m tcp -m multiport --dports 613,944,1004,2049 -j DROP
    28 -A INPUT -p udp -m udp -m multiport --dports 2049 -s 18.181.0.53/255.255.255.255 -j ACCEPT
    29 -A INPUT -p udp -m udp -m multiport --dports 2049 -s 18.181.0.57/255.255.255.255 -j ACCEPT
    30 -A INPUT -p udp -m udp -m multiport --dports 2049 -j DROP
    31 -A INPUT -s 18.7.7.102/255.255.255.255 -j DROP
     22-A INPUT -p tcp -m tcp --dport 5666 -s ! 18.187.1.128/255.255.255.255 -j REJECT
     23-A INPUT -p tcp -m tcp --dport 199 -s ! 18.187.1.128/255.255.255.255 -j REJECT
     24-A INPUT -p udp -m udp --dport 161 -s ! 18.187.1.128/255.255.255.255 -j REJECT
     25-A INPUT -p tcp -m tcp -m multiport --dports 111,613,944,1004,2049 -s 18.181.0.53/255.255.255.255 -j ACCEPT
     26-A INPUT -p tcp -m tcp -m multiport --dports 111,613,944,1004,2049 -s 18.181.0.57/255.255.255.255 -j ACCEPT
     27-A INPUT -p tcp -m tcp -m multiport --dports 111,613,944,1004,2049 -j REJECT
     28-A INPUT -p udp -m udp -m multiport --dports 111,2049 -s 18.181.0.53/255.255.255.255 -j ACCEPT
     29-A INPUT -p udp -m udp -m multiport --dports 111,2049 -s 18.181.0.57/255.255.255.255 -j ACCEPT
     30-A INPUT -p udp -m udp -m multiport --dports 111,2049 -j REJECT
     31-A INPUT -s 18.7.7.102/255.255.255.255 -j REJECT
    3232:FORWARD ACCEPT [0:0]
    3333:OUTPUT ACCEPT [500523:537785790]
Note: See TracChangeset for help on using the changeset viewer.