From e761c329c1b3de9c39c711de0e19eeefcc031658 Mon Sep 17 00:00:00 2001
From: root <root@localhost>
Date: Fri, 30 Jul 2010 02:10:34 +0000
Subject: Adding jump box policies.

---
 policies/iptables-jump | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 policies/iptables-jump

(limited to 'policies/iptables-jump')

diff --git a/policies/iptables-jump b/policies/iptables-jump
new file mode 100644
index 0000000..b7d02a8
--- /dev/null
+++ b/policies/iptables-jump
@@ -0,0 +1,19 @@
+#
+# iptables Firewall Policy
+# by Mike Crute (mcrute@gmail.com)
+# on July 29, 2010 
+#
+
+ALLOW_PING=1
+FUNNY_BUSINESS=0
+
+TCP_ALLOW="${TCP_ALLOW} 443" # Hidden SSH 
+TCP_ALLOW="${TCP_ALLOW} 5870 5871" # Inbound tunnels 
+HOSTS_DENY=$(cat /etc/firewall/blocked-ips)
+
+
+#HOSTS_ALLOW=""
+#TCP_DENY=""
+#UDP_ALLOW="53"
+#UDP_DENY=""
+#RULES=""
-- 
cgit v1.2.3