iptables templates

seth vidal skvidal at fedoraproject.org
Thu May 24 20:35:08 UTC 2007


Here's what I've used in the past.

It allows connections for certain ports/places and then drops everything
else as the last item.

http://linux.duke.edu/~skvidal/misc/iptables-template

it's pretty painless, really.

If we want to add explicit outbound rules, too, that's fine, but I'd
advise enabling logging b/c that stuff is easy to get wrong. :)

This is just a sample but it's simple and straightforward.

-sv


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20070524/0c58a8c1/attachment.sig>


More information about the Fedora-infrastructure-list mailing list