Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- iptables -F
- iptables -t nat -F
- ip6tables -X
- ip6tables -F
- ##abilito il forwarding
- iptables -A INPUT -s TUOIP -p icmp --icmp-type echo-request -j ACCEPT
- iptables -A INPUT -p icmp --icmp-type echo-request -j DROP
- ## ipv4 TCP permetto i servizi per determinati ip sorgenti prima di droppare tutto
- iptables -A INPUT -i eth0 -p tcp -m state --state ESTABLISHED,RELATED --dport 0:65535 -j ACCEPT
- iptables -A INPUT -i eth0 -s TUOIP -p tcp --dport 22 -j ACCEPT
- iptables -A INPUT -i eth0 -s TUOIP -p tcp --dport 31337 -j ACCEPT
- iptables -A INPUT -s ip,degli,ircd -i eth0 -p tcp --dport 113 -j ACCEPT
- iptables -A INPUT -i eth0 -p tcp -j DROP
- ## ipv4 UDP permetto i servizi prima di droppare tutto
- iptables -A INPUT -i eth0 -p udp -m state --state ESTABLISHED,RELATED --dport 0:65535 -j ACCEPT
- #iptables -A INPUT -i eth0 -p udp --dport 1194 -j ACCEPT
- iptables -A INPUT -i eth0 -p udp -j DROP
- ## ipv6 total closed tcp udp and icmp ping (sixxs tunnelrobot fuckoff)
- ip6tables -A INPUT -i eth0 -p tcp -m state --state ESTABLISHED,RELATED --dport 0:65535 -j ACCEPT
- ip6tables -A INPUT -s ip,degli,ircd -i eth0 -p tcp --dport 113 -j ACCEPT
- ip6tables -A INPUT -i eth0 -p tcp -j DROP
- ip6tables -A INPUT -i eth0 -p udp -j DROP
- ip6tables -A INPUT -s tuoipv6dicasa -p ipv6-icmp --icmpv6-type echo-request -j ACCEPT
- ip6tables -A INPUT -p ipv6-icmp --icmpv6-type echo-request -j DROP
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
