iptables templates
seth vidal
skvidal at fedoraproject.org
Thu May 24 20:35:08 UTC 2007
Here's what I've used in the past.
It allows connections for certain ports/places and then drops everything
else as the last item.
http://linux.duke.edu/~skvidal/misc/iptables-template
it's pretty painless, really.
If we want to add explicit outbound rules, too, that's fine, but I'd
advise enabling logging b/c that stuff is easy to get wrong. :)
This is just a sample but it's simple and straightforward.
-sv
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20070524/0c58a8c1/attachment.sig>
More information about the Fedora-infrastructure-list
mailing list