13,420
edits
Changes
no edit summary
'''Perform the following stepsfor your vm1 machine:'''
# Remove the rules in your '''INPUT''' chain that are allowing all '''icmp''' and '''ssh''' traffic.
# Once you are happy with how your firewall works - make a backup of the original default rules: <source lang='bash'>cp /etc/sysconfig/iptables /etc/sysconfig/iptables.original</source>
# Overwrite the defaults with the current state of the firewall:<source lang='bash'>/usr/libexec/iptables/iptables.init save</source>
# Store the above commands into a shell script called: '''myicmp_restore.bash'''<br><br># Since the above steps for your vm1 apply for your vm2, vm3, and other vms you will create for this course, copy your '''myicmp_restore.bash''' script to your vm2 and vm3 machines to run and setup the same firewall rules. Make certain to save your firewall rules for both vm2 and vm3. Notice how a simple shell script has saved you time when setting up firewall rules for other vms.
Upon completion of this lab, each of your machines vms has a firewall protecting them from unexpected traffic. You should now have a basic understanding of the commands necessary to modify firewalls using iptables. You will be building on these rules for the rest of the course. Record the URLs of the websites you've used to figure out how to do the work.
{{Admon/tip|Time for a new backup!|Once have successfully completed this lab, make a new backup of your virtual machines.}}
