Linux下iptables防火墙的几个实用语句
发布时间:2025-05-19 点击:13
最近在看linux 防火墙iptables的相关内容,下面几个实用语句可能有用记录下。
icmp相关应用
使自己不能ping?通?127.0.0.1
iptables?-a?input?-s?127.0.0.1?-p?icmp?-j?drop
192.168.0.0/24?网段无法ping能本机
iptables?-a?input?-s?192.168.0.0/24?-p?icmp?-j?drop
禁所有机器
#?iptables?-a?input?-s?0/0?-p?icmp?-j?drop
#?icmp(ping)?接受?!?echo-request
/sbin/iptables?-a?input?-p?icmp?–icmp-type?!?echo-request?-j?accept
accept_redirects
#?echo?“0”?<?/proc/sys/net/ipv4/conf/all/accept_redirects
or
#?sysctl?net.ipv4.conf.all.accept_redirects=”0″
禁止ip访问自己
[root@linux?root]#?iptables?-a?input?-s?192.168.0.253?-j?drop
禁止msn?
/sbin/iptables?-i?forward?-d?gateway.messenger.hotmail.com?-j?drop
/sbin/iptables?-i?forward?-p?tcp?–dport?1863?-j?drop
禁止qq?
/sbin/iptables?-a?forward?-p?tcp?-d?tcpconn.tencent.com?–dport?80?-j?drop
/sbin/iptables?-a?forward?-p?tcp?-d?tcpconn.tencent.com?–dport?443?-j?drop
/sbin/iptables?-a?forward?-p?tcp?-d?tcpconn2.tencent.com?-j?drop
/sbin/iptables?-a?forward?-i?eth0?-p?udp?–dport?8000?-j?drop
封杀bt?
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?6881:6890?-j?drop
www
#?禁止<<www
/sbin/iptables?-a?forward?-p?tcp?–dport?80?-j?drop
#?开放<<www
/sbin/iptables?-a?forward?-p?tcp?–dport?80?-j?accept
ftp
#?禁止ftp
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?20?-j?drop
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?21?-j?drop
#?开放ftp
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?20?-j?accept
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?21?-j?accept
smtp,pop3
#?禁止smtp,pop3
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?25?-j?drop
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?110?-j?drop
#?开放smtp,pop3
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?25?-j?accept
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?110?-j?accept
samba
#?禁止samba
[root@linux?root]#?iptables?-a?forward?-p?tcp?–sport?137:139?-j?drop
[root@linux?root]#?iptables?-a?forward?-p?udp?–sport?137:139?-j?drop
#?drop?others
/sbin/iptables?-a?forward?-i?eth0?-m?state?–state?established,related?-j?accept
/sbin/iptables?-a?forward?-s?192.168.1.0/24?-j?drop
org域名怎么样?为什么说它是受到信赖的域名?
windows防火墙开放端口
重新填写备案域名-备案平台
帮我把这个域名解析到到这里
云服务器怎么删除内存
阿里云服务器怎么安装个人博客
二手车电商烧钱大战才开始
php如何删除数据库表
icmp相关应用
使自己不能ping?通?127.0.0.1
iptables?-a?input?-s?127.0.0.1?-p?icmp?-j?drop
192.168.0.0/24?网段无法ping能本机
iptables?-a?input?-s?192.168.0.0/24?-p?icmp?-j?drop
禁所有机器
#?iptables?-a?input?-s?0/0?-p?icmp?-j?drop
#?icmp(ping)?接受?!?echo-request
/sbin/iptables?-a?input?-p?icmp?–icmp-type?!?echo-request?-j?accept
accept_redirects
#?echo?“0”?<?/proc/sys/net/ipv4/conf/all/accept_redirects
or
#?sysctl?net.ipv4.conf.all.accept_redirects=”0″
禁止ip访问自己
[root@linux?root]#?iptables?-a?input?-s?192.168.0.253?-j?drop
禁止msn?
/sbin/iptables?-i?forward?-d?gateway.messenger.hotmail.com?-j?drop
/sbin/iptables?-i?forward?-p?tcp?–dport?1863?-j?drop
禁止qq?
/sbin/iptables?-a?forward?-p?tcp?-d?tcpconn.tencent.com?–dport?80?-j?drop
/sbin/iptables?-a?forward?-p?tcp?-d?tcpconn.tencent.com?–dport?443?-j?drop
/sbin/iptables?-a?forward?-p?tcp?-d?tcpconn2.tencent.com?-j?drop
/sbin/iptables?-a?forward?-i?eth0?-p?udp?–dport?8000?-j?drop
封杀bt?
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?6881:6890?-j?drop
www
#?禁止<<www
/sbin/iptables?-a?forward?-p?tcp?–dport?80?-j?drop
#?开放<<www
/sbin/iptables?-a?forward?-p?tcp?–dport?80?-j?accept
ftp
#?禁止ftp
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?20?-j?drop
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?21?-j?drop
#?开放ftp
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?20?-j?accept
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?21?-j?accept
smtp,pop3
#?禁止smtp,pop3
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?25?-j?drop
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?110?-j?drop
#?开放smtp,pop3
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?25?-j?accept
/sbin/iptables?-a?forward?-i?eth0?-p?tcp?–dport?110?-j?accept
samba
#?禁止samba
[root@linux?root]#?iptables?-a?forward?-p?tcp?–sport?137:139?-j?drop
[root@linux?root]#?iptables?-a?forward?-p?udp?–sport?137:139?-j?drop
#?drop?others
/sbin/iptables?-a?forward?-i?eth0?-m?state?–state?established,related?-j?accept
/sbin/iptables?-a?forward?-s?192.168.1.0/24?-j?drop
org域名怎么样?为什么说它是受到信赖的域名?
windows防火墙开放端口
重新填写备案域名-备案平台
帮我把这个域名解析到到这里
云服务器怎么删除内存
阿里云服务器怎么安装个人博客
二手车电商烧钱大战才开始
php如何删除数据库表
上一篇:阿里云服务器续费每年多少钱
下一篇:如何把云服务器做成镜像