1,234
edits
Changes
→Creating Customized Chains
# Add a rule to your '''MYSSH''' chain to accept all traffic on your virtual interface from '''192.168.X.0/24''' (i.e. your internal network).
# Add rules to the '''end of the MYSSH chain''' to drop all remaining '''ssh''' connections, but to log these denied packets with log level 'info' and log prefix "DENIED BY MYSSH" before doing so.
# Issue '''iptables -L''' to view your firewall rules for your newly-created chain.<br><br>Let's create a new chain to create rules relating only to the '''icmpICMP''' serviceprotocol (ping):<br><br>
# Make a new chain named '''MYICMP'''.
# Add a rule to the beginning of the '''INPUT''' chain to send '''ICMP''' ping packets to your '''MYICMP''' chain.
# Find a partner and get the ipaddress and MAC address of their external facing interface. If you don't have a partner - use a virtual machine.
# Add a rule to your '''MYICMP''' chain that allows '''ICMP''' packets coming in on your virtual interface from '''192.168.X.0/24''' (i.e. your internal network).
'''Record steps, commands, and your observations in INVESTIGATION 2 in your OPS335 lab log-book'''
= COMPLETING THE LAB =