Open main menu

CDOT Wiki β

Changes

OPS235 Lab 7

204 bytes added, 10:48, 28 June 2016
no edit summary
# '''IMPORTANT:''' Before proceeding, '''flush the iptables rules''' for '''INPUT''', '''OUTPUT''', and '''FORWARD''' chains for both your '''c7host''' and '''centos1''' VMs.<br><br>
# Issue an iptables command to verify that both the the iptables rules have no rules for those chains for your '''c7host''' and '''centos1''' VM's
# On your '''c7host''' VM, add (append) an iptables rule to '''REJECT''' <u>incoming</u> requests to http ( via TCP, port:80) by issuing the command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">iptables -A INPUT -p tcp --sport 80 -j REJECT</span></code></b># NOTE: '''c7host'''CLick on the following link to launch your message in a web-browser: if '''http://localhost''' stops working locally<br>What happenned? If your message didn't load, add why do you think it didn't load?# Issue the following iptables rule itables rules to make an exception to centos1, as root view incoming web requests on your local machine (interface card: lo - loopback address): <br /><b><code><span style="color:#3366CC;font-size:1.2em;">iptables -I A INPUT -i lo -j ACCEPT</span></code></b>
# On '''centos1''' confirm that the httpd service is stopped so it cannot interfere with your observations.
# On '''centos1''' confirm that you can't connect by using firefox to centos1 '''http://centos1/'''
13,008
edits