Iptables Rules for IPv4 and IPv6

networking

Hello,

Linode provides a basic set of rules for IP4 and IP6 at this URL: https://www.linode.com/docs/security/fi … h-iptables">https://www.linode.com/docs/security/firewalls/control-network-traffic-with-iptables.

Wondering if someone could share a hardened version of these rules to allow for http, https, sshd, icmp, pop3 and smtp. Not sure of one needs to open the port for dns as well.

Many thanks for help.

2 Replies

forum:emestee 6 years, 5 months ago

Not sure what you mean by "hardened" version of rules here. A correctly configured firewall only allows through that which is explicitly allowed, which is hardening over allowing everything. This is essentially what the article in question does, you just add rules to allow through the traffic you want and remove what you don't want. The next level of network wise hardening after that is separating the firewall physically from the box, and doing deep packet inspection. That is probably an overkill for everyday mail and web servers.

forum:clixer 6 years, 5 months ago

Hi emestee,

Thank you for your response and for the clarification.

Cheers.

Reply

Description

Please enter an answer

Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Compute

Storage

Databases

Networking

Developer Tools

Delivery

Security

Services

Industries

Pricing

Community

Engage With Us

Iptables Rules for IPv4 and IPv6

2 Replies

Reply

Tips: