From: Fatih Ozavci (holden@siyahsapka.com)
Date: Mon 12 May 2003 - 16:35:03 EEST
Selam Alper,
iptables -A INPUT -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
Bu satirda "-p tcp" gibi bir ifade goremiyorum, ya sen ? neyin state'ini
takip edecen :-)
-- Fatih Ozavci <holden@siyahsapka.com> IT Security Consultant On Mon, 2003-05-12 at 16:36, Alper Oguz wrote: > Merhaba, > > Asagidaki satirlarda nerede hata var nolur bir yardim.. :) > (-m state'ti bir turlu calistiramadim) > > iptables -P INPUT DROP > iptables -P OUTPUT DROP > iptables -P FORWARD DROP > iptables -F INPUT > iptables -F OUTPUT > iptables -F FORWARD > > iptables -A INPUT -p tcp -i eth1 -m state --state NEW,ESTABLISHED,RELATED > -m multiport --dport 20,21,telnet,ssh,80 -j ACCEPT > iptables -A INPUT -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT > iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT > iptables -A OUTPUT -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT > > iptables -t nat -A POSTROUTING -s $LAN -o eth1 -j MASQUERADE > > > -- > Alper Ošuz alperliste@showtv.com.tr