Created
August 24, 2013 10:29
-
-
Save hendricius/6327334 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| #/sbin/iptables -A INPUT -p udp -m udp --dport domain -j ACCEPT | |
| #-A INPUT -p tcp -m tcp --dport 20000 -j ACCEPT | |
| /sbin/iptables -A INPUT -i lo -j ACCEPT | |
| /sbin/iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -s 127.0.0.1 -m tcp --dport 10000 -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport https -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport http -j ACCEPT | |
| # Rails | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 3000 -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 3001 -j ACCEPT | |
| # Rails Agility | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 3005 -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 3006 -j ACCEPT | |
| /sbin/iptables -A INPUT -p udp -m udp --dport 3006 -j ACCEPT | |
| # Rails for user hendricius | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 4000 -j ACCEPT | |
| # Minecraft/teamspeak | |
| /sbin/iptables -A INPUT -p udp -m udp --dport 9987 -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 10011 -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 30033 -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 25565 -j ACCEPT | |
| # IRC | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport 6667 -j ACCEPT | |
| # VPN | |
| /sbin/iptables -A INPUT -i eth0 -p udp --dport 1194 -j ACCEPT | |
| /sbin/iptables -A OUTPUT -o eth0 -p udp --dport 1194 -j ACCEPT | |
| /sbin/iptables -A INPUT -i tun0 -j ACCEPT | |
| /sbin/iptables -A OUTPUT -o tun0 -j ACCEPT | |
| /sbin/iptables -A FORWARD -o tun0 -j ACCEPT | |
| #/sbin/iptables -A INPUT -p tcp -m tcp --dport 25565 -j ACCEPT | |
| #/sbin/iptables -A INPUT -p tcp -m tcp --dport 6119 -j ACCEPT | |
| #-A INPUT -p tcp -m tcp --dport imaps -j ACCEPT | |
| #-A INPUT -p tcp -m tcp --dport imap -j ACCEPT | |
| #-A INPUT -p tcp -m tcp --dport pop3s -j ACCEPT | |
| #-A INPUT -p tcp -m tcp --dport pop3 -j ACCEPT | |
| #iptables -A INPUT -p tcp -m tcp --dport ftp-data -j ACCEPT | |
| #/sbin/iptables -A INPUT -p tcp -m tcp --dport domain -j ACCEPT | |
| #-A INPUT -p tcp -m tcp --dport smtp -j ACCEPT | |
| /sbin/iptables -A INPUT -p tcp -m tcp --dport ssh -j ACCEPT | |
| /sbin/iptables -P INPUT DROP | |
| /sbin/iptables -P FORWARD DROP | |
| /sbin/iptables -P OUTPUT ACCEPT |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment