Forked from rick4470/gist:2cb06a2954991438f0f9d97ccec26408
Created
May 27, 2020 14:05
-
-
Save lucydjo/b0566d4c6de53d5d2785a2a8f5275e6a to your computer and use it in GitHub Desktop.
Block all traffic to 27017
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| iptables -I INPUT -p tcp -s 0.0.0.0/0 --dport 27017 -j DROP | |
| iptables -I INPUT -p tcp -s 127.0.0.1 --dport 27017 -j ACCEPT | |
| iptables -I INPUT -p tcp -s <IP GOES HERE> --dport 27017 -j ACCEPT | |
| iptables-save > /etc/iptables.conf # Save this changes to file | |
| touch /etc/network/if-up.d/iptables # Create file to call conf from | |
| echo "iptables-restore < /etc/iptables.conf" >> /etc/network/if-up.d/iptables # Add this line to this file | |
| chmod +x /etc/network/if-up.d/iptables # Make the script executable |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment