API tools faq
paste
Advertisement
iNotLazo

Untitled

iNotLazo
Oct 5th, 2020
28
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.13 KB | None | 0 0
raw download clone embed print report
  1. #!/bin/sh
  2.  
  3. ALLOWED="27017 6379 21 22 80 48596 25565 10101 30303 666 26600 45700 8087 443 433 8080 3389 58963 8192 8193 8194 8195 9987 9988"
  4.  
  5. iptables -P INPUT ACCEPT
  6. iptables -F
  7. iptables -X
  8. iptables -Z
  9.  
  10. iptables -A INPUT -i lo -j ACCEPT
  11. iptables -A OUTPUT -o lo -j ACCEPT
  12.  
  13. for port in $ALLOWED; do
  14. echo "Aceptando el puerto TCP $port..."
  15. iptables -A INPUT -p tcp --dport $port -j ACCEPT
  16. done
  17.  
  18. for port in $ALLOWED; do
  19. echo "Aceptando el puerto UDP $port..."
  20. iptables -A INPUT -p udp --dport $port -j ACCEPT
  21. done
  22.  
  23. iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
  24.  
  25. iptables -A INPUT -p udp -j DROP
  26. iptables -A INPUT -p tcp --syn -j DROP
  27. iptables -N syn_flood
  28. iptables -A INPUT -p tcp --syn -j syn_flood
  29. iptables -A syn_flood -m limit --limit 3/s --limit-burst 9 -j RETURN
  30. iptables -A syn_flood -j DROP
  31. iptables -A INPUT -p icmp -m limit --limit 1/s --limit-burst 1 -j ACCEPT
  32. iptables -A INPUT -p icmp -m limit --limit 1/s --limit-burst 1 -j LOG
  33. iptables -A INPUT -p tcp --syn --dport 25565 -m connlimit --connlimit-above 3 -j REJECT
  34. iptables -A INPUT -p tcp --syn --dport 10101 -m connlimit --connlimit-above 3 -j REJECT
  35. iptables -A INPUT -p tcp --syn --dport 30303 -m connlimit --connlimit-above 3 -j REJECT
  36. iptables -A INPUT -p tcp --syn --dport 9987 -m connlimit --connlimit-above 3 -j REJECT
  37. iptables -A INPUT -p tcp --syn --dport 9988 -m connlimit --connlimit-above 3 -j REJECT
  38. iptables -A INPUT -p tcp --syn --dport 666 -m connlimit --connlimit-above 3 -j REJECT
  39. iptables -A INPUT -p tcp --syn --dport 26600 -m connlimit --connlimit-above 3 -j REJECT
  40. iptables -A INPUT -p tcp --syn --dport 48596 -m connlimit --connlimit-above 3 -j REJECT
  41. iptables -A INPUT -p tcp --syn --dport 58963 -m connlimit --connlimit-above 3 -j REJECT
  42.  
  43. ufw allow 6379
  44. ufw allow 27017
  45. ufw allow 9988
  46. ufw allow 9987
  47. ufw allow 8087
  48. ufw allow 45700
  49. ufw allow 433
  50. ufw allow 3389
  51. ufw allow 8192
  52. ufw allow 8193
  53. ufw allow 8194
  54. ufw allow 8195
  55. ufw allow 20
  56. ufw allow 21
  57. ufw allow 22
  58. ufw deny 80
  59. ufw allow 25565
  60. ufw allow 30303
  61. ufw allow 10101
  62. ufw allow 666
  63. ufw allow 26600
  64. ufw allow 48596
  65. ufw allow 58963
  66. ufw allow 8080
  67. ufw enable
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!