Fwd: Script de Firewall

To: debian-user-portuguese@lists.debian.org
Subject: Fwd: Script de Firewall
From: "Silvino Silva" <silvino.silva@gmail.com>
Date: Tue, 6 Feb 2007 20:39:24 +0000
Message-id: <[🔎] 3a3ff64e0702061239l15438289r2fe950283843335@mail.gmail.com>
In-reply-to: <[🔎] 3a3ff64e0702061231x1e9e4571v1ec1b4cc06497e83@mail.gmail.com>
References: <[🔎] 3a3ff64e0702061110q302d0bf7m434383265ca98fe1@mail.gmail.com> <[🔎] 481b535f0702061117n162bc06bi5af2c457a3854fb4@mail.gmail.com> <[🔎] 3a3ff64e0702061145v2fae1666rec675206c576f907@mail.gmail.com> <ccf158630702061148v79cdd530ja1a0a4b566fa382f@mail.gmail.com> <[🔎] 3a3ff64e0702061231x1e9e4571v1ec1b4cc06497e83@mail.gmail.com>

Aqui esta ele para correcção :P

#!/bin/bash
PATH=/sbin:$PATH
#Inicialização:
clear
iptables -X
iptables -F
# Tabela filter
iptables -t filter -P INPUT DROP
iptables -t filter -P OUTPUT ACCEPT
iptables -t filter -P FORWARD DROP
# Tabela nat
iptables -t nat -P PREROUTING DROP
iptables -t nat -P OUTPUT DROP
iptables -t nat -P POSTROUTING DROP
# Tabela mangle
iptables -t mangle -P PREROUTING DROP
iptables -t mangle -P OUTPUT DROP

#Aceita loopback
iptables -t filter -A INPUT -j ACCEPT -i lo

#Aceita serviço de HTML
iptables -t filter -A INPUT -j ACCEPT -i ath0 -p tcp --sport 80 --dport 1024:

#Serviço de MSN
iptables -t filter -A INPUT -j ACCEPT -i ath0 -p tcp --sport 1863 --dport 1024:

#Aceita HTTPs
iptables -t filter -A INPUT -j ACCEPT -i ath0 -p tcp --sport 443 --dport 1024:

#Serviço de FTP, apemas upload
iptables -t filter -A INPUT -j ACCEPT -i ath0 -p tcp --sport 21 --dport 1024:
iptables -t filter -A INPUT -j ACCEPT -i ath0 -p tcp --sport 20 --dport 1024:

#Aceita respostas udp dos servidores de DNS
iptables -t filter -A INPUT -j ACCEPT -p udp -s ns.esoterica.pt --sport 53 --dport 1024:

#Aceitas respostas de destino inatingível e ping
iptables -t filter -A INPUT -j ACCEPT -p icmp --icmp-type 0
iptables -t filter -A INPUT -j ACCEPT -p icmp --icmp-type 3

#Tudo o resto é rejeitado e registado
iptables -A INPUT -j LOG
iptables -A INPUT -j DROP
iptables -L
exit 0

Reply to:

Follow-Ups:
- Fwd: Script de Firewall
  - From: "Silvino Silva" <silvino.silva@gmail.com>
- Re: Fwd: Script de Firewall
  - From: caio ferreira <idic@terra.com.br>

References:
- Script de Firewall
  - From: "Silvino Silva" <silvino.silva@gmail.com>
- Re: Script de Firewall
  - From: "Rúben Lício" <rubenlr@gmail.com>
- Fwd: Script de Firewall
  - From: "Silvino Silva" <silvino.silva@gmail.com>
- Fwd: Script de Firewall
  - From: "Silvino Silva" <silvino.silva@gmail.com>

Prev by Date: Fwd: Script de Firewall
Next by Date: Re: Colocar a barra de localização no nautilus.
Previous by thread: Fwd: Script de Firewall
Next by thread: Fwd: Script de Firewall
Index(es):
- Date
- Thread