iptables – blocking incoming traffic

Feb 14
2009

Comments Off

This iptables config will block all incoming traffic, except from machines, identified by thier MAC addresses:

iptables -F INPUT

iptables -A INPUT -m mac—mac-source 00:3f:5f:ab:2c:7d -j ACCEPT

iptables -A INPUT -m mac—mac-source 00:1e:32:36:97:4a -j ACCEPT

iptables -A INPUT -m mac—mac-source 00:44:11:a5:1d:6d -j ACCEPT

# or by ip address:

#iptables -A INPUT -p tcp -s 1.1.1.1 -j ACCEPT

#iptables -A INPUT -p tcp -s 2.2.2.2 -j ACCEPT

#iptables -A INPUT -p tcp -s 3.3.3.3 -j ACCEPT

iptables -A INPUT -m state—state ESTABLISHED -j ACCEPT

iptables -A INPUT -s 127.0.0.1 -j ACCEPT

iptables -A INPUT -j REJECT

Written by Vidul in: SA, scripts |

Comments are closed.

Categories
- HTML (3)
- news (22)
- oneliners (3)
- OOP (5)
- Perl (20)
  - JAPH (4)
- programming (14)
  - manuals (2)
  - sorting (3)
  - string (1)
- Python (10)
  - alphabet (1)
  - chars (1)
  - email (1)
- RoR (3)
- Ruby (50)
  - api (2)
  - array (2)
  - basis (1)
  - config (1)
  - data (1)
  - dir (1)
  - file (1)
  - hash (1)
  - overloading (1)
- SA (26)
  - alias (1)
  - bash (5)
- scripts (29)
- senseless (2)
- Trac (2)
- Uncategorized (1)
Archives
- ▼ 2010 (13)
  - Aug (6)
  - Apr (1)
  - Mar (2)
  - Feb (1)
  - Jan (3)
- ► 2009 (23)
  - Dec (8)
  - Nov (1)
  - Oct (1)
  - Aug (1)
  - Jul (1)
  - Jun (1)
  - May (1)
  - Mar (3)
  - Feb (4)
  - Jan (2)
- ► 2008 (72)
  - Dec (2)
  - Nov (4)
  - Oct (5)
  - Sep (4)
  - Aug (9)
  - Jul (16)
  - Jun (4)
  - May (2)
  - Apr (2)
  - Mar (2)
  - Feb (8)
  - Jan (14)
- ► 2007 (13)
  - Dec (3)
  - Nov (2)
  - Oct (1)
  - Aug (1)
  - Jul (6)

Vidul Nikolaev Petrov

iptables – blocking incoming traffic

Categories

Archives

Calendar

Tags

February 2009
M	T	W	T	F	S	S
« Jan				Mar »
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28