remark :
iptable 세팅
Vim
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 |
[root@localhost]# cat /etc/sysconfig/iptables # Generated by iptables-save v1.3.5 on Mon Jan 28 16:36:47 2013 *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A RH-Firewall-1-INPUT -s 206.124.132.23 -j DROP -A RH-Firewall-1-INPUT -s 76.72.173.179 -j DROP [0:0] -A INPUT -j RH-Firewall-1-INPUT [0:0] -A FORWARD -j RH-Firewall-1-INPUT [0:0] -A RH-Firewall-1-INPUT -i lo -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -p udp -m udp --dport 53 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -s 111.222.222.222 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 25 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 143 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 110 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 443 -j ACCEPT [0:0] -A RH-Firewall-1-INPUT -j LOG --log-prefix "INPUT:DROP:" --log-level 6 [0:0] -A RH-Firewall-1-INPUT -j DROP COMMIT |