regras iptables no boot
A fim de segurar que somente a maquina de desenvolvimento ira acessar o
servidor Postgres eu criei um script sh com as seguintes regras
iptables, como eu faço para que estas regras sejam ativadas a cada
inicialização do sistema Debian?
IP servidor PostgreSQL: 192.168.0.27
IP Cliente PGAdmin: 192.168.0.66
applein@debian:~$ cat iptables_postgreql.sh
#!/bin/sh
iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d 192.168.0.27
--dport 5432 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp -s 192.168.0.27 --sport 5432 -d 0/0 --dport
1024:65535 -m state --state ESTABLISHED -j ACCEPT
iptables -A INPUT -p tcp -s 192.168.0.66 --sport 1024:65535 -d
192.168.0.27 --dport 5432 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp -s 192.168.0.27 --sport 5432 -d 192.168.0.66
--dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp -s 192.168.0.27 --sport 1024:65535 -d 0/0
--dport 5432 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -p tcp -s 0/0 --sport 5432 -d 192.168.0.27 --dport
1024:65535 -m state --state ESTABLISHED -j ACCEPT
applein@debian:~$
Reply to: