OK, thanks
Justin Pryzby escribió:
On Sat, May 16, 2020 at 03:27:07PM -0400,
merlinverde...@infomed.sld.cu wrote:
Then, why appear this(sudo lsof -nP -iTCP -sTCP:LISTEN)
sshd 2275root3u IPv4 24181 0t0 TCP
*:22 (LISTEN)
Shorewall controls the iptables layer
On Sat, May 16, 2020 at 03:27:07PM -0400, merlinverde...@infomed.sld.cu wrote:
>
> Then, why appear this(sudo lsof -nP -iTCP -sTCP:LISTEN)
>
> sshd 2275root3u IPv4 24181 0t0 TCP *:22 (LISTEN)
Shorewall controls the iptables layer, not which applications are listeni
Then, why appear this(sudo lsof -nP -iTCP -sTCP:LISTEN)
sshd 2275root3u IPv4 24181 0t0 TCP *:22 (LISTEN)
The port 22 is LISTEN, i only have this rules:
--
Invalid(DROP) net $FW tcp
On 5/16/2020 7:53 PM, merlinverde...@infomed.sld.cu wrote:
> Would this rule ensure that only port 80 can be used with tcp?
>
> ACCEPT all $FW tcp www
>
All inbound connections to the firewall on port(80) http will be
accepted from anywhere.
--
Matt Darfeuille
Shorewall Project Committee, one
Would this rule ensure that only port 80 can be used with tcp?
ACCEPT all $FW tcp www
Policy file is:
#SOURCE DESTPOLICY LOGLEVELRATECONNLIMIT
$FW net ACCEPT
net all DROPinfo
all all DROPin
On Sat, May 16, 2020 at 09:23:36AM -0400, merlinverde...@infomed.sld.cu wrote:
> How can i implement the following rules:
>
> iptables -A INPUT -p tcp -m tcp --dport 80 -m state --state NEW,ESTABLISHED
> -j ACCEPT
> iptables -A INPUT -p tcp -m tcp --sport 80 -m state --state NEW,ESTABLISHED
> -j
