The command for a single IP is:
The code is as follows
Copy Code
Iptables-i input-s 211.1.0.0-j DROP
The command for the IP segment is:
The code is as follows
Copy Code
Iptables-i
In the previous article we have learned how to write some simple firewall rules, but these rules only take effect temporarily, when the firewall is shut down or the server shuts down, all the rules will be emptied after the reboot. So I need to save
Server environment: Ali Server, Linux CentOS operating system, Couchbase server
Start security policy: Deny all by default, allow only required
Action command:
Allow inbound SSH connections
Iptables-a input-p TCP--dport 22-m State--state
Configure iptables, allowing him to allow 3306 of access Add the following script ... The problem disappears (execute the following statement directly in the command line interface): Iptables-i INPUT -P TCP--DPort 3306-j ACCEPT; //access to the
Brief introduction:Mysql's master-slave synchronization function, this solution is a very common enterprise. Often used to back up the database, the main library generates Binlog log files when the client operates the main library.From the library
1. Show the status of the firewallRun the following command with root privileges:
# iptables-l-n-v
Parameter description:
-L: Lists the rules.
-V: Displays detailed information. This option displays the interface name,
1, verify that the kernel is loaded with the MPPE module:
Modprobe ppp-compress-18 && echo MPPE is ok
2, the installation of the required software packages:
Yum-y Install PPPwget
Installing the Telnet packageTelnet-client (or Telnet), this package provides a Telnet client program;Telnet-server software package, this is the real Telnet server package.1, first detect whether these packages have been installed[Email protected]
When a new Linux server is configured, if you need to configure iptables, you are typically configured with the following command:
First, install and start the firewall
[Root@linux ~]#/etc/init.d/iptables start
When we use Iptables to add rules,
How to Set up a firewall to remotely connect to Oracle in Linux:
Open ports 5801 to 5810 for vnc
Iptables-I INPUT-p tcp -- dport 5801: 5810-j ACCEPT
Iptables-I INPUT-p tcp -- dport 5901: 5910-j ACCEPT
Iptables-a input-p tcp -- dport 5801: 5810-j
System Environment: RedHat7.2squid (squid-cache.org) 1. system settings: Run: setup Select server by default iptables and ipchains have been selected. Remove ipchains and only run iptables. 2. Install squid. We recommend that you install
Use the intruded vro to enter the Intranet
Last year, we started to use vrouters to penetrate the destination intranet. Before seeing wooyun, there was an article about translation of foreigners about routertraffic hijacking. The use conditions
[Email protected] ~]# iptables-F[[email protected]~]# Iptables-X [[email protected]~]# iptables-a input-m State--state related,established-J ACCEPT # does not allow the server to actively establish a new connection [[email protected]~]# iptables-a
One of my Centos boot script Generation 1, switch to/etc/init. d/2, and create sh script vi andy. sh [plain] #! /Bin/sh # add for chkconfig # chkconfig: 2345 70 30 # description: the description of the shell # Brief description of the script #
haproxy+keepalived Build WEB Cluster We have learned two Web cluster software nginx and LVS, they have their own characteristics, this chapter will introduce another cluster software haproxy, we will be on its scheduling algorithm, cluster
Graph tutorial on installing and configuring mysql5.7.18 in centos6.4,
Follow these steps to install mysql5.7.18 in centos6.4.
1. First, check whether mysql has been installed and find the mysql-related software rpm package.
#rpm -qa | grep mysql
2.
Serviceiptablesstart: No response solution; [root @ lt ~] # Serviceiptablesstatus firewall stopped [root @ lt ~] # Serviceiptablesstart [root @ lt ~] # Serviceiptablesstatus the firewall has been stopped. for example, the configuration
After a night of hard work, I finally succeeded in the installation. although there are many documents on the Internet, although pptp is the simplest one, it is basically copied, in some cases, errors will not be corrected, so I will sort out the
Introduction: centos generally has an iptables firewall. because the VPS of the centos system in hyper-v architecture adopts the IPTABLES setting method widely circulated on the Internet, port 22 of ssh cannot be modified, if you modify the ssh port,
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.