diff options
author | Mike Crute <mcrute@gmail.com> | 2010-01-16 22:07:32 -0500 |
---|---|---|
committer | Mike Crute <mcrute@gmail.com> | 2010-01-16 22:07:32 -0500 |
commit | a6028f4e69a1e3e7fc1890002cf8f3b4c4073dee (patch) | |
tree | be01bcb4024b59c9ac61dacea1ff89bb314d4bbb /policies/iptables-web | |
parent | 583405ab5f7666435d006db0c81567e2a938225b (diff) | |
download | iptables_scripts-a6028f4e69a1e3e7fc1890002cf8f3b4c4073dee.tar.bz2 iptables_scripts-a6028f4e69a1e3e7fc1890002cf8f3b4c4073dee.tar.xz iptables_scripts-a6028f4e69a1e3e7fc1890002cf8f3b4c4073dee.zip |
Updating tunnels and blocked ips
Diffstat (limited to 'policies/iptables-web')
-rw-r--r-- | policies/iptables-web | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/policies/iptables-web b/policies/iptables-web index 9dc9ca5..5503473 100644 --- a/policies/iptables-web +++ b/policies/iptables-web | |||
@@ -5,11 +5,14 @@ | |||
5 | # | 5 | # |
6 | 6 | ||
7 | ALLOW_PING=1 | 7 | ALLOW_PING=1 |
8 | FUNNY_BUSINESS=0 | ||
8 | 9 | ||
9 | TCP_ALLOW="22" # SSH | 10 | TCP_ALLOW="22" # SSH |
10 | TCP_ALLOW="${TCP_ALLOW} 80 443" # Web Ports | 11 | TCP_ALLOW="${TCP_ALLOW} 80" # Web Ports |
11 | TCP_ALLOW="${TCP_ALLOW} 20 21" # FTP Ports | 12 | TCP_ALLOW="${TCP_ALLOW} 3690" # SVN Testing |
12 | TCP_ALLOW="${TCP_ALLOW} 5870 5871" # Inbound tunnels | 13 | TCP_ALLOW="${TCP_ALLOW} 5870 5871 5873" # Inbound tunnels |
14 | #TCP_ALLOW="${TCP_ALLOW} 80 443" # Web Ports | ||
15 | #TCP_ALLOW="${TCP_ALLOW} 20 21" # FTP Ports | ||
13 | HOSTS_DENY=$(cat /etc/firewall/blocked-ips) | 16 | HOSTS_DENY=$(cat /etc/firewall/blocked-ips) |
14 | 17 | ||
15 | #HOSTS_ALLOW="" | 18 | #HOSTS_ALLOW="" |