1
edit
Changes
Created page with '<b><big><big>Installing and Configuring Firewall</big></big></b> <b><big>Introduction</big></b> <font face="Georgia">In this page, you are going to create a firewall that allo…'
<b><big><big>Installing and Configuring Firewall</big></big></b>
<b><big>Introduction</big></b>
<font face="Georgia">In this page, you are going to create a firewall that allows only outside world view the web page in your server
</font>
<b><big>Instruction</big></b>
#Login as root user
#Clear up the rules in your iptables: <b><code><font color=green >iptables -F</font></code></b>
#Change the input chain default policy to drop: <b><code><font color=green >iptables -P INPUT DROP</font></code></b>
#Create a rule that allow outside to access http port only: <b><code><font color=green >iptables -I INPUT -p tcp --dport http -j ACCEPT</font></code></b>
#Change the input chain default policy to drop: <b><code><font color=green >iptables -P OUTPUT DROP</font></code></b>
#Create a rule that allow packets to output from http port only: <b><code><font color=green > iptables -I OUTPUT -p tcp --sport http -j ACCEPT</font></code></b>
#View your web page from other virtual machine. The web page should be displayed.
#Try to <b>ssh</b> and <b>ping</b> from virtual machine to your server. All connections should be blocked.
#Save your iptables rules: <b><code><font color=green >service iptables save</font></code></b>
<b><big>Introduction</big></b>
<font face="Georgia">In this page, you are going to create a firewall that allows only outside world view the web page in your server
</font>
<b><big>Instruction</big></b>
#Login as root user
#Clear up the rules in your iptables: <b><code><font color=green >iptables -F</font></code></b>
#Change the input chain default policy to drop: <b><code><font color=green >iptables -P INPUT DROP</font></code></b>
#Create a rule that allow outside to access http port only: <b><code><font color=green >iptables -I INPUT -p tcp --dport http -j ACCEPT</font></code></b>
#Change the input chain default policy to drop: <b><code><font color=green >iptables -P OUTPUT DROP</font></code></b>
#Create a rule that allow packets to output from http port only: <b><code><font color=green > iptables -I OUTPUT -p tcp --sport http -j ACCEPT</font></code></b>
#View your web page from other virtual machine. The web page should be displayed.
#Try to <b>ssh</b> and <b>ping</b> from virtual machine to your server. All connections should be blocked.
#Save your iptables rules: <b><code><font color=green >service iptables save</font></code></b>
