API tools faq
paste
Advertisement
Guest User

iptables

a guest
Nov 22nd, 2017
55
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.08 KB | None | 0 0
raw download clone embed print report
  1. #!/bin/sh
  2.  
  3. # Local loop
  4. iptables -A INPUT -i lo -j ACCEPT
  5. iptables -A INPUT ! -i lo -d 127.0.0.0/8 -j REJECT
  6.  
  7. # PING
  8. iptables -A INPUT -p icmp --icmp-type 8 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
  9. iptables -A OUTPUT -p icmp --icmp-type 8 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
  10.  
  11. # FTP
  12. # Outgoing
  13. iptables -A INPUT -i ens33 -p tcp --sport 21 -m state --state ESTABLISHED -j ACCEPT
  14. iptables -A OUTPUT -o ens33 -p tcp --dport 21 -m state --state NEW,ESTABLISHED -j ACCEPT
  15.  
  16. # DNS
  17. iptables -A INPUT -i ens33 -p udp --sport 53 -m state --state ESTABLISHED -j ACCEPT
  18. iptables -A OUTPUT -o ens33 -p udp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT
  19.  
  20. iptables -A INPUT -i ens33 -p tcp --sport 53 -m state --state ESTABLISHED -j ACCEPT
  21. iptables -A OUTPUT -o ens33 -p tcp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT
  22.  
  23. # WHOIS
  24. iptables -A INPUT -p tcp --sport 43 -j ACCEPT
  25. iptables -A OUTPUT -p tcp --dport 43 -j ACCEPT
  26.  
  27. # SSH
  28. # Incoming
  29. iptables -A INPUT -i ens33 -p tcp --dport 2222 -m state --state NEW,ESTABLISHED -j ACCEPT
  30. iptables -A OUTPUT -o ens33 -p tcp --sport 2222 -m state --state ESTABLISHED -j ACCEPT
  31. # Outgoing
  32. iptables -A INPUT -i ens33 -p tcp --sport 22 -m state --state ESTABLISHED -j ACCEPT
  33. iptables -A OUTPUT -o ens33 -p tcp --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
  34.  
  35. # HTTP
  36. # Incoming
  37. iptables -A INPUT -i ens33 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
  38. iptables -A OUTPUT -o ens33 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
  39. # Outgoing
  40. iptables -A INPUT -i ens33 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
  41. iptables -A OUTPUT -o ens33 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
  42.  
  43. # HTTPS
  44. # Incoming
  45. iptables -A INPUT -i ens33 -p tcp --dport 443 -m state --state NEW,ESTABLISHED -j ACCEPT
  46. iptables -A OUTPUT -o ens33 -p tcp --sport 443 -m state --state ESTABLISHED -j ACCEPT
  47. # Outgoing
  48. iptables -A INPUT -i ens33 -p tcp --sport 443 -m state --state ESTABLISHED -j ACCEPT
  49. iptables -A OUTPUT -o ens33 -p tcp --dport 443 -m state --state NEW,ESTABLISHED -j ACCEPT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!