Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/ $
# PORT PORT(S) DEST LIMIT GROUP
#SECTION ALL
#SECTION ESTABLISHED
#SECTION RELATED
SECTION NEW
# Drop Ping from the "bad" net zone.. and prevent your log from being flooded..
Ping(DROP) net $FW
# Open 123 for ntpd service on startup
ACCEPT fw net udp 123
# Allow standard services in and out of the box
ACCEPT fw net udp 53 # DNS
ACCEPT fw net tcp 53 # DNS
ACCEPT net fw tcp 22 # SSH
ACCEPT net fw tcp 80 # HTTP
ACCEPT net fw tcp 443 # HTTPS
ACCEPT net fw tcp 21 # FTP
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.