diff options
Diffstat (limited to 'policies/iptables-web')
-rw-r--r-- | policies/iptables-web | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/policies/iptables-web b/policies/iptables-web index 9dc9ca5..5503473 100644 --- a/policies/iptables-web +++ b/policies/iptables-web | |||
@@ -5,11 +5,14 @@ | |||
5 | # | 5 | # |
6 | 6 | ||
7 | ALLOW_PING=1 | 7 | ALLOW_PING=1 |
8 | FUNNY_BUSINESS=0 | ||
8 | 9 | ||
9 | TCP_ALLOW="22" # SSH | 10 | TCP_ALLOW="22" # SSH |
10 | TCP_ALLOW="${TCP_ALLOW} 80 443" # Web Ports | 11 | TCP_ALLOW="${TCP_ALLOW} 80" # Web Ports |
11 | TCP_ALLOW="${TCP_ALLOW} 20 21" # FTP Ports | 12 | TCP_ALLOW="${TCP_ALLOW} 3690" # SVN Testing |
12 | TCP_ALLOW="${TCP_ALLOW} 5870 5871" # Inbound tunnels | 13 | TCP_ALLOW="${TCP_ALLOW} 5870 5871 5873" # Inbound tunnels |
14 | #TCP_ALLOW="${TCP_ALLOW} 80 443" # Web Ports | ||
15 | #TCP_ALLOW="${TCP_ALLOW} 20 21" # FTP Ports | ||
13 | HOSTS_DENY=$(cat /etc/firewall/blocked-ips) | 16 | HOSTS_DENY=$(cat /etc/firewall/blocked-ips) |
14 | 17 | ||
15 | #HOSTS_ALLOW="" | 18 | #HOSTS_ALLOW="" |