[問題] 能請大家幫忙看一下iptable設定哪裡錯ꐠ…
首先我iptable設定如下
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i eth0 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT
-A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
-A FORWARD -p icmp -j ACCEPT
-A FORWARD -i eth0 -j ACCEPT
-A FORWARD -o eth0 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT
我想問一下 我default INPUT policy 是 ACCEPT, 但是我想要連 80 port
卻會被擋掉而連 ssh 卻可以, 我應設定如果沒設定rule就應該是ACCEPT壓
但是怎還會被擋掉 希望有人可以幫忙解答
感謝
--
※ 發信站: 批踢踢實業坊(ptt.cc)
◆ From: 116.59.123.121
※ 編輯: panda22 來自: 116.59.123.121 (09/15 14:10)
→
09/15 14:18, , 1F
09/15 14:18, 1F
→
09/15 14:24, , 2F
09/15 14:24, 2F
→
09/16 15:01, , 3F
09/16 15:01, 3F
→
09/16 15:02, , 4F
09/16 15:02, 4F
討論串 (同標題文章)
以下文章回應了本文:
完整討論串 (本文為第 1 之 2 篇):