Andy Melnikov (nponeccop) wrote,
Andy Melnikov
nponeccop

Бейсик XXI века

https://galaxy.ansible.com/mikegleasonjr/firewall/

  003 allow ping replies:
    - -A INPUT -p icmp --icmp-type echo-request -j ACCEPT
    - -A OUTPUT -p icmp --icmp-type echo-reply -j ACCEPT
  100 allow established related:
    - -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
  200 allow ssh:
    - -A INPUT -p tcp --dport ssh -j ACCEPT
  999 drop everything:
    - -P INPUT DROP
Как там в ansible правильно /etc/sysconfig/iptables конфигурировать?
Tags: programming, энтерпрайзасты не выэнтерпрайзизировали
Subscribe

  • Post a new comment

    Error

    default userpic

    Your reply will be screened

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.
  • 2 comments