diff options
Diffstat (limited to 'policies/iptables-web')
| -rw-r--r-- | policies/iptables-web | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/policies/iptables-web b/policies/iptables-web index 9dc9ca5..5503473 100644 --- a/policies/iptables-web +++ b/policies/iptables-web | |||
| @@ -5,11 +5,14 @@ | |||
| 5 | # | 5 | # |
| 6 | 6 | ||
| 7 | ALLOW_PING=1 | 7 | ALLOW_PING=1 |
| 8 | FUNNY_BUSINESS=0 | ||
| 8 | 9 | ||
| 9 | TCP_ALLOW="22" # SSH | 10 | TCP_ALLOW="22" # SSH |
| 10 | TCP_ALLOW="${TCP_ALLOW} 80 443" # Web Ports | 11 | TCP_ALLOW="${TCP_ALLOW} 80" # Web Ports |
| 11 | TCP_ALLOW="${TCP_ALLOW} 20 21" # FTP Ports | 12 | TCP_ALLOW="${TCP_ALLOW} 3690" # SVN Testing |
| 12 | TCP_ALLOW="${TCP_ALLOW} 5870 5871" # Inbound tunnels | 13 | TCP_ALLOW="${TCP_ALLOW} 5870 5871 5873" # Inbound tunnels |
| 14 | #TCP_ALLOW="${TCP_ALLOW} 80 443" # Web Ports | ||
| 15 | #TCP_ALLOW="${TCP_ALLOW} 20 21" # FTP Ports | ||
| 13 | HOSTS_DENY=$(cat /etc/firewall/blocked-ips) | 16 | HOSTS_DENY=$(cat /etc/firewall/blocked-ips) |
| 14 | 17 | ||
| 15 | #HOSTS_ALLOW="" | 18 | #HOSTS_ALLOW="" |