1. back up iptables # cp/etc/sysconfig/iptables/var/tmp first. Port 80 must be enabled, and the following three lines of IP address and Lan must be specified: first, disable all port 80 and enable port 80 at the end of the ip segment 192.168.1.0/24.
Need to open port 80, specify IP and LAN
The following three lines mean:
Shut down all 80 ports first.
Open 80 ports of IP segment 192.168.1.0/24 end
Open IP Segment 211.123.16.123/24 80 port IP Segment
# iptables-i input-p TCP--dport 80-j DROP
We recommend a good iptables-shell script to free you from the troublesome iptables configuration. I am not sure who the script author is, so I deleted the version declaration. system: centos5.9 script content: viiptables. sh #! /Bin/sh # -----------
The code is as follows
Copy Code
#!/bin/sh#------------------------------------------------------------------------------# for debugging use Iptables-v.Iptables= "/sbin/iptables"Ip6tables= "/sbin/ip6tables"Modprobe=
1 iptables good script (reference)
Quote:
[Root @ server ~] # Cat/opt/iptables. Rule
#! /Bin/bash
#
# The interface that connect Internet
Extif = "ppp0"
# The inside interface. If you don't have this one
# And you must let this be black ex> inif = ""
1. back up iptables # cp/etc/sysconfig/iptables/var/tmp first. Port 80 must be enabled, and the following three lines of IP address and lan must be specified: first, disable all port 80 and enable port 80 at the end of the ip segment 192.168.1.0/24.
Introduced
Iptables is an IP packet filtering system integrated with the latest version 3.5 Linux kernel. If a Linux system is connected to an Internet or LAN, a server, or a proxy server that connects LAN and the Internet, the system facilitates
If there are many ports and are sorted, use the port range statement. for example, Port 40100: 40109 indicates port 40100 to Port 40109. if you do not know the basic knowledge of IPTABLES, we recommend that you first check it out. configure a filter
Http://os.51cto.com/art/201107/273443.htm"51CTO exclusive feature" Linux system administrators have been exposed to netfilter/iptables, this is the Linux system comes with a free firewall, the function is very powerful. In the following
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.