Leandro suchacoder

## Best Practices.md

      
              3 files
            
          
              0 forks
            
          
                0 comments
              
            
              4 stars
            
          
                Thermi
                / Best Practices.md
            
            
              Last active
              February 10, 2026 15:12
            
              
                Summary page of the Netfilter related resources
              
          
    Best Practices:

Don't use iptables to apply your rules one at a time, use iptables-restore to apply a whole ruleset in one action.
Set your INPUT and FORWARD policy to DROP.
Don't set your OUTPUT policy to DROP unless you really know what you're doing.
If you're going to implement a blacklist or whitelist, you should look at using ipsets if that list is going to be more than two or three addresses, and if it might be dynamic.
Allow all traffic on lo.
You should ALLOW traffic in ctstates of RELATED and ESTABLISHED near the beginning of your rules
Don't use iptables -L
DON'T USE IPTABLES -L
Use iptables-save instead of iptables -L.


## iptables.sh
#!/usr/bin/env sh

# Location of executables
IPSET=/usr/sbin/ipset
IPTABLES=/sbin/iptables

# Common definitions
COMMENT="-m comment --comment"
LOG="ULOG --ulog-nlgroup 1 --ulog-prefix"
DONT_LOG=""

## iptables.sh
#!/usr/bin/env sh

# Location of executables
IPSET=/usr/sbin/ipset
IPTABLES=/sbin/iptables

# Common definitions
COMMENT="-m comment --comment"
LOG="ULOG --ulog-nlgroup 1 --ulog-prefix"
DONT_LOG=""

## ipset.service
#
# reference: http://namsep.blogspot.com/2015/12/yad-centos-7-iptables-ipset-and-fail2ban.html
# reference: http://pkgs.fedoraproject.org/cgit/ipset.git/tree/ipset.service
# file location: /etc/systemd/system/ipset.service
#
# systemctl enable ipset.service
# mkdir /etc/ipset
# touch /etc/ipset/ipset
# ...do something with ipset...
# ipset save > /etc/ipset/ipset

## snippets.md

      
              1 file
            
          
              5 forks
            
          
                2 comments
              
            
              25 stars
            
          
                tomhodgins
                / snippets.md
            
            
              Last active
              August 8, 2022 14:27
            
              
                Snippets.md is my most often used HTML, CSS and JavaScript snippets for front-end web development
              
          
    This is a collection of my most often used lines of code, as well as a few other examples I want to have ready at a moment's notice. These snippets focus on building HTML from scratch, linking in good web fonts, and setting up responsive styles for your pages.
Table of Contents


HTML Snippets
Font Snippets
CSS Snippets
JavaScript Functions
Shell Commands


## modules.md

      
              1 file
            
          
              6 forks
            
          
                0 comments
              
            
              52 stars
            
          
                mattdesl
                / modules.md
            
            
              Last active
              October 12, 2024 16:17
            
              
                my favourite modules.
              
          
    mostly in the realm of creative coding and graphics programming
lots of these are my own :)
tooling

https://www.npmjs.org/package/wzrd (browserify dev server)

https://www.npmjs.org/package/budo (like wzrd but with incremental watching & LiveReload)

https://www.npmjs.org/package/beefy (more fully-featured dev server)

  
## iptables.sh
#!/usr/bin/env sh

# Location of executables
IPSET=/usr/sbin/ipset
IPTABLES=/sbin/iptables

# Common definitions
COMMENT="-m comment --comment"
LOG="ULOG --ulog-nlgroup 1 --ulog-prefix"
DONT_LOG=""

## gist:2597326

      
              1 file
            
          
              165 forks
            
          
                26 comments
              
            
              688 stars
            
          
                liamcurry
                / gist:2597326
            
            
              Created
              May 4, 2012 19:56
            
              
                Vanilla JS vs jQuery
              
          
    Moving from jQuery

Events

// jQuery
$(document).ready(function() {
  // code
})
	#!/usr/bin/env sh

	# Location of executables
	IPSET=/usr/sbin/ipset
	IPTABLES=/sbin/iptables

	# Common definitions
	COMMENT="-m comment --comment"
	LOG="ULOG --ulog-nlgroup 1 --ulog-prefix"
	DONT_LOG=""
	#
	# reference: http://namsep.blogspot.com/2015/12/yad-centos-7-iptables-ipset-and-fail2ban.html
	# reference: http://pkgs.fedoraproject.org/cgit/ipset.git/tree/ipset.service
	# file location: /etc/systemd/system/ipset.service
	#
	# systemctl enable ipset.service
	# mkdir /etc/ipset
	# touch /etc/ipset/ipset
	# ...do something with ipset...
	# ipset save > /etc/ipset/ipset