리눅스
subject 레드햇 8.0 에서의 iptable configration
author 관리자 date 2004-01-06 hit 181 HIT
# Firewall configuration written by lokkit
# Manual customization of this file is not recommended.
# Note: ifup-post will punch the current nameservers through the
#       firewall; such entries will *not* be listed here.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Lokkit-0-50-INPUT - [0:0]

-A INPUT -j RH-Lokkit-0-50-INPUT

-A RH-Lokkit-0-50-INPUT -s 61.36.181.233 -p tcp -m tcp --dport 21 --syn -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 22 --syn -j ACCEPT
-A RH-Lokkit-0-50-INPUT -s 61.36.181.233 -p tcp -m tcp --dport 23 --syn -j ACCEPT
#######################################################################
# for smtp
#######################################################################
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 25 --syn -j ACCEPT

#######################################################################
# for pop3d
#######################################################################
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 110 --syn -j ACCEPT

#######################################################################
# not use all port
#######################################################################
#-A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT
#-A RH-Lokkit-0-50-INPUT -i eth0 -j ACCEPT

#######################################################################
# reject port configration
#######################################################################
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT
-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT
-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT
COMMIT  
목록보기
        X  
54  해킹 체크 스크립트  2004-01-08 177
53  레드햇 8.0 에서의 iptables 설정파일  2004-01-06 517
52  레드햇 7.3 에서의 iptables 설정파일  2004-01-06 193
51  커널 레벨 취약점 보완  2004-01-06 195
50  Portsentry Configration..  2004-01-06 391
 레드햇 8.0 에서의 iptable configration  2004-01-06 181
48  메일서버(QMAIL) 구축 - 19. pop3 설치하기  2004-01-06 147
47  메일서버(QMAIL) 구축 - 18. 메일을 다른 호스트의 메일계정으로 포워딩  2004-01-06 166
46  메일서버(QMAIL) 구축 - 17. 메일 수신 테스트  2004-01-06 160
45  메일서버(QMAIL) 구축 - 16. 메일 송신 테스트하기  2004-01-06 151
44  메일서버(QMAIL) 구축 - 15. 리부팅 후, qmail의 정상적인 작동 확인  2004-01-06 144
43  메일서버(QMAIL) 구축 - 14. 각 사용자별로 메일 송수신 디렉토리 만들기  2004-01-06 147
42  메일서버(QMAIL) 구축 - 13. /var/qmail/rc 생성하기  2004-01-06 153
41  메일서버(QMAIL) 구축 - 12. sendmail 죽이기  2004-01-06 148
40  메일서버(QMAIL) 구축 - 11. 액세스 컨트롤 파일 작성  2004-01-06 153
1 2 3 4 5