Last active
August 29, 2015 13:56
-
-
Save munky69rock/9033980 to your computer and use it in GitHub Desktop.
simple iptables settings for DTI ServerMans@VPS
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # http://www.creativegear.jp/2011/03/29/dti-serversmanvps/ | |
| iptables -F | |
| iptables -X | |
| # http | |
| iptables -A INPUT -p tcp --dport 80 -j ACCEPT | |
| # confluence | |
| iptables -A INPUT -p tcp --dport 8000 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 8090 -j ACCEPT | |
| # https | |
| iptables -A INPUT -p tcp --dport 443 -j ACCEPT | |
| # smtp | |
| iptables -A INPUT -p tcp --dport 25 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 110 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 143 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 465 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 587 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 993 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 995 -j ACCEPT | |
| # pop | |
| iptables -A INPUT -p tcp --dport 110 -j ACCEPT | |
| # ssh | |
| iptables -A INPUT -p tcp --dport 3843 -j ACCEPT | |
| # rails | |
| iptables -A INPUT -p tcp --dport 3000 -j ACCEPT | |
| # mosh | |
| iptables -A INPUT -p udp --dport 60000:61000 -j ACCEPT | |
| # perl test | |
| # smtp | |
| iptables -A INPUT -p tcp --dport 5225 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 5000 -j ACCEPT | |
| #iptables -A INPUT -p tcp --dport 50108 -j ACCEPT | |
| iptables -A INPUT -p tcp --dport 50000:59999 -j ACCEPT | |
| # ICMP | |
| iptables -A INPUT -p icmp -j ACCEPT | |
| # DNS | |
| iptables -A INPUT -p udp --sport domain -j ACCEPT | |
| iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT | |
| iptables -P INPUT DROP |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment