13,420
edits
Changes
no edit summary
* Issue the following iptables policy to DROP all incoming connections:<br><b><code><span style="pointer-events: none;cursor: default;color:#3366CC;font-size:1.2em;">iptables -P INPUT DROP</span></code></b>
* Have your neighbour try to ping your external facing IP Address. What happened? Why?
* Have your neighbour obtain their external facing IP Address* Issue iptables command to ADD ping exception from your neighbour's IPAddress and neighbour test* Have neighbour test sshing into your c7host. Successful?* Issue iptables command to insert before rule #1 for ssh exception and neighbour test* List iptables rules for INPUT chain* Issue iptables rule at bottom of OUTPUT chain to DROP http (port 80 connections).* Open another web-browser. Can you connect to a webpage?* Issue iptables rule to flush the OUTPUT chain. Does your web-browser now work?* We will keep the rules for the INPUT chain.* Shutdown all VMs and restart your c7host Linux machine.* List the iptables rules for the INPUT chain. What happened?* Proceed to the next part to learn how to learn how to make your iptables rules persistent.
