From: "Dharmendra.T" <dharmu@nsecure.net>
To: Sundaram Ramasamy <sun@percipia.com>
Cc: netfilter@lists.netfilter.org
Subject: Re: Redhat Linux 8.0 IPtables help
Date: 06 Jun 2003 10:10:01 +0530 [thread overview]
Message-ID: <1054874488.2496.7.camel@india> (raw)
In-Reply-To: <000f01c32b99$3d65fab0$8c01a8c0@percipia.com>
[-- Attachment #1: Type: text/plain, Size: 1260 bytes --]
On Fri, 2003-06-06 at 01:02, Sundaram Ramasamy wrote:
Hi,
I have Linux machine with single Network interface. I want to block all the
tcp,udp and icmp port's other then 22,23,24 and 80.
Can you verify the following script?
IPTABLES=/sbin/iptables
$IPTABLES -P INPUT DROP
$IPTABLES -P OUTPUT DROP
$IPTABLES -P FORWARD DROP
$IPTABLES -A INPUT -p tcp -m multiport --destination-port 22,23,24,80 -j
ACCEPT
$IPTABLES -A INPUT -p udp -m multiport --destination-port 22,23,24,80 -j
ACCEPT
What port should I block for icmp protocol?
-SR
You have to add the following rules to enable the communication.
$IPTABLES -A OUTPUT -p tcp -m multiport --source-port 22,23,24,80 -j
ACCEPT
$IPTABLES -A OUTPUT -p udp -m multiport --source-port 22,23,24,80 -j
ACCEPT
--
Regards
Dharmendra.T
This message is intended for the addressee only. It may contain
privileged or Confidential information. If you have received this
message in error,please notify the sender and destroy the message
immediately.Unauthorised use or reproduction of this message is strictly
prohibited.
[-- Attachment #2: Type: text/html, Size: 4053 bytes --]
next prev parent reply other threads:[~2003-06-06 4:40 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <20030602160653.GB14609@eris>
[not found] ` <20030602165342.GC14917@harp.incogen.com>
[not found] ` <20030602171755.GA6298@hactar.local.funknet.net>
[not found] ` <200306041635.19489.rfunk@funknet.net>
2003-06-05 19:32 ` Redhat Linux 8.0 IPtables help Sundaram Ramasamy
2003-06-06 4:40 ` Dharmendra.T [this message]
2003-06-05 22:20 George Vieira
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1054874488.2496.7.camel@india \
--to=dharmu@nsecure.net \
--cc=netfilter@lists.netfilter.org \
--cc=sun@percipia.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox