This ip table

Computing.Net > Forums > Linux > This ip table

Computer Problems? Computing.Net has over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to start participating now! Also, be sure to check out the New User Guide.

This ip table

Name: matt2kjones
Date: August 4, 2002 at 15:23:04 Pacific

Comment:

ok i have been studying iptables, and i want to know if this iptable would close all ports apart from 80 and 21
thanx
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP
iptables -A INPUT -i eth0 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --sport 21 -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --dport 21 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --dport 21 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 21 -m state --state NEW,ESTABLISHED -j ACCEPT

Sponsored Link

Ads by Google

Response Number 1

Name: junky_toof
Date: August 4, 2002 at 15:53:26 Pacific

Reply:

You want a stateful filter for http(80)
and ftp(21==control)?

Why not something like:
iptables -A INPUT -d $myhost -p tcp --syn
--dport 80 state --state NEW -j ACCEPT
iptables -A INPUT -d $myhost -p tcp --syn
--dport 20:21 state --state NEW -j ACCEPT
iptables -A INPUT -s 0/0 -d $myhost state \
--state ESTABLISHED -j ACCEPT
iptables -A INPUT -s 0/0 -d $myhost state \
--state RELATED -j ACCEPT

Read again.

how to see static ip table from wher is this ip To enable the DHCP allocator on this IP address, change the scope to includ	a computer on this network already has this ip address mac ip tables Cant host server with this ip
See More

RHL 7.3 / XP dual boot pr...

Map drive in Win98 to Lin...

Post Locked

This post is quite old and has been locked from receiving new replies. Please create a new posting instead.

Go to Linux Forum Home

Sponsored links

Ads by Google

Results for: This ip table

wher is ip tables

Summary

www.computing.net/answers/linux/wher-is-ip-tables/24554.html

Priorizing Hosts using IP Masq

Summary

www.computing.net/answers/linux/priorizing-hosts-using-ip-masq/17794.html

REDHAT 7.2, CANT TELNET TO IP ADDRESS

Summary

www.computing.net/answers/linux/redhat-72-cant-telnet-to-ip-address/9642.html

From the Geek Dictionary
crack - A derisive suffix applied to a number of video games, especially MMORPGs in...

Ask a Question!

Weekly Poll
Do you believe in Video Game Addiction?

Poll Finishes In 5 Days.
Discuss in The Lounge
Poll History

Recent Posts
Net bt clearing

System is very slow

Antivirus System Pro alert

How does this work?

formula for doctors rotation schedule

All Awaiting Reply

Tom's News
Queues in Manhattan Form as DROID Launches

Report: $99 iPhone 3GS in Time For the Holidays

Game Boy, Ball Gets Into Toy Hall of Fame

iPhone Developer Stealing Private Info

Nintendo: There is No Wii HD

More Tom's Guide News

Data Recovery

Manufacturer List | About Us | Advertising Info | Contact Us
The information on Computing.Net is the opinions of its users. Such opinions may not be accurate and they are to be used at your own risk. Computing.Net cannot verify the validity of the statements made on this site. Computing.Net and Computing.Net LLC hereby disclaim all responsibility and liability for the content of Computing.Net and its accuracy.
PLEASE READ THE FULL DISCLAIMER AND LEGAL TERMS BY CLICKING HERE