opensim-tools – Diff between revs 26 and 27
?pathlinks?
Rev 26 | Rev 27 | |||
---|---|---|---|---|
1 | #!/bin/bash |
1 | #!/bin/bash |
|
2 | ########################################################################### |
2 | ########################################################################### |
|
3 | ## Copyright (C) Wizardry and Steamworks 2012 - License: GNU GPLv3 ## |
3 | ## Copyright (C) Wizardry and Steamworks 2012 - License: GNU GPLv3 ## |
|
4 | ## Please see: http://www.gnu.org/licenses/gpl.html for legal details, ## |
4 | ## Please see: http://www.gnu.org/licenses/gpl.html for legal details, ## |
|
5 | ## rights of fair usage, the disclaimer and warranty conditions. ## |
5 | ## rights of fair usage, the disclaimer and warranty conditions. ## |
|
6 | ########################################################################### |
6 | ########################################################################### |
|
7 | |
7 | |
|
8 | iptables -F |
8 | iptables -F |
|
9 | iptables -X |
9 | iptables -X |
|
10 | iptables -t nat -F |
10 | iptables -t nat -F |
|
11 | iptables -t nat -X |
11 | iptables -t nat -X |
|
12 | iptables -t mangle -F |
12 | iptables -t mangle -F |
|
13 | iptables -t mangle -X |
13 | iptables -t mangle -X |
|
14 | |
14 | |
|
15 | # SSH Guard |
15 | # SSH Guard |
|
16 | iptables -N sshguard |
16 | iptables -N sshguard |
|
17 | iptables -A INPUT -j sshguard |
17 | iptables -A INPUT -j sshguard |
|
18 | ip6tables -A INPUT -j sshguard |
18 | ip6tables -A INPUT -j sshguard |
|
19 | # Drop by default |
19 | # Drop by default |
|
20 | iptables -P INPUT DROP |
20 | iptables -P INPUT DROP |
|
21 | # Always accept loopback |
21 | # Always accept loopback |
|
22 | iptables -A INPUT -i lo -j ACCEPT |
22 | iptables -A INPUT -i lo -j ACCEPT |
|
23 | # Accept related |
23 | # Accept related |
|
24 | iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT |
24 | iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT |
|
25 | # SSH |
25 | # SSH |
|
26 | iptables -A INPUT -i eth0 -p tcp --dport 54377 -j ACCEPT |
26 | iptables -A INPUT -i eth0 -p tcp --dport 54377 -j ACCEPT |
|
27 | # OpenSim |
27 | # OpenSim |
|
28 | iptables -A INPUT -i eth0 -p tcp --dport 9000:9004 -j ACCEPT |
28 | iptables -A INPUT -i eth0 -p tcp --dport 9000:9000 -j ACCEPT |
|
29 | iptables -A INPUT -i eth0 -p udp --dport 9000:9004 -j ACCEPT |
29 | iptables -A INPUT -i eth0 -p udp --dport 9000:9000 -j ACCEPT |
|
30 | # Web |
30 | # Web |
|
31 | iptables -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT |
31 | iptables -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT |
|
32 | # Samba |
32 | # Samba |
|
33 | iptables -A INPUT -i eth0 -p tcp --dport 445 -j ACCEPT |
33 | iptables -A INPUT -i eth0 -p tcp --dport 445 -j ACCEPT |
|
34 | |
34 | |
|
35 | # Save |
35 | # Save |
|
36 | iptables-save > /etc/iptables/rules.v4 |
36 | iptables-save > /etc/iptables/rules.v4 |
|
37 | |
37 | |