[linux-network] Re: disaridan gelenlere yasak

---------

New Message Reply About this list Date view Thread view Subject view Author view Attachment view

From: Enver ALTIN (enver.altin@frontsite.com.tr)
Date: Tue 04 Nov 2003 - 04:06:45 EST

  • Next message: A. Ayhan Kanmaz: "[linux-network] Ters Vekil Sunucu Kayitlari"

    On Tue, 2003-11-04 at 10:35, necip wrote:
    > merhaba
    Merhaba,

    > ben disaridan gelen tum istekleri 80. prot (web) haric kapatmak istiyorum.
    > bunu iptables ile en kisa bicimde asil yapabiirim.

    eth0 yerel ag, eth1 internet varsayarak *en kisa*:

            iptables -A INPUT -i eth1 -p tcp --dport ! 80 -j DROP

    biraz daha uzun:

            iptables -P INPUT DROP
            iptables -A INPUT -i lo -j ACCEPT
            iptables -A INPUT -i eth0 -j ACCEPT
            iptables -A INPUT -i eth1 -p tcp --dport 80 -j ACCEPT

    gibi. Tabii yan etkileri var ve gelistirilmeli. 

    -- 
 __________
|          |
|          |  Enver ALTIN (a.k.a. skyblue)
|          |  Software developer, IT consultant
|    FRONT |
|==========|  FrontSITE Bilgi Teknolojisi A.Þ.
|_____SITE_|  http://www.frontsite.com.tr/
-- Attached file included as plaintext by Ecartis --
-- File: signature.asc
-- Desc: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQA/p2wkZCB2FZvqK0sRAvX5AKCGrnPyKZ25F5nxwfgp43Iqm2S60ACggm1j
DwoU3HT9D9EqS6OfhK9dLv4=
=ujSU
-----END PGP SIGNATURE-----
  • Next message: A. Ayhan Kanmaz: "[linux-network] Ters Vekil Sunucu Kayitlari"
    New Message Reply About this list Date view Thread view Subject view Author view Attachment view

    ---------

    Bu arsiv hypermail 2.1.6 tarafindan uretilmistir.