From: uid s <ui...@gm...> - 2012-10-30 19:33:23
|
I read somewhere that using CDE with some iptables rules would not be functioning properly. I'm runing a basic ruleset allowing only incoming ssh connections only. This is the "quick copy and paste" if someone finds utility. It could be done better , for sure. ( The loopback OUTPUT rule is recursive ;) ) , Change the DROP/REJECT policy as you want. iptables -F iptables -Z iptables -X iptables --policy INPUT DROP iptables --policy FORWARD DROP iptables --policy OUTPUT ACCEPT iptables -A INPUT -i lo -j ACCEPT iptables -A OUTPUT -o lo -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables --append INPUT --match state --state ESTABLISHED,RELATED --jump ACCEPT iptables --append INPUT --jump REJECT iptables --append FORWARD --jump REJECT J |