Èñïîëüçîâàíèå ssh-òóíåëåé äëÿ áåçîïàñíîãî äîñòóïà ê ðåñóðñàì LAN

Originally Posted by ghost38

Ïðåæäå âñåãî, ñïàñèáî çà ïîäðîáíóþ èíñòðóêöèþ.
Ïûòàþñü ýòî âñå îñâîèòü... Óñòàíîâèë è çàïóñòèë dropbear, ðàçîáðàëñÿ ñ putty.
Íå ïîéìó êàê ìíå íàñòðîèòü post-firewall, ò.ê. íå ïîíèìàþ íè÷åãî
Ó ìåíÿ â íåì ñåé÷àñ òàêèå ïðàâèëà(íå ïîìíþ óæå äëÿ ÷åãî, íî âðîäå äëÿ DC++ ñäåëàí ïðîáðîñ ïîðòîâ)
#!/bin/sh
iptables -A FORWARD -s 192.168.1.0/24 -j ACCEPT
iptables -A FORWARD -j DROP
iptables -I SECURITY -p udp --dport 16000:16254 -j RETURN

Åñëè ÿ äîáàâëþ Âàøè :
# set default policy
iptables -P INPUT DROP
# remove last default rule
iptables -D INPUT -j DROP
iptables -A INPUT -p tcp --syn --dport 22 -j ACCEPT

íè÷åãî ÿ íå èñïîð÷ó?

Íàäî ïðèìåðíî òàê ÷òîáû áûëî:
Code:
#!/bin/sh
# set default policy
iptables -P INPUT DROP
# remove last default rule
iptables -D INPUT -j DROP
iptables -A FORWARD -s 192.168.1.0/24 -j ACCEPT
iptables -A INPUT -p tcp --syn --dport 22 -j ACCEPT
iptables -A FORWARD -j DROP
iptables -I SECURITY -p udp --dport 16000:16254 -j RETURN

Thread: Èñïîëüçîâàíèå ssh-òóíåëåé äëÿ áåçîïàñíîãî äîñòóïà ê ðåñóðñàì LAN

Thread Tools

Rate This Thread

Display

Threaded View

Similar Threads

Òåñòèðîâàíèå ñêîðîñòè ÷òåíèÿ/çàïèñè USB-HDD.

Tags for this Thread

Posting Permissions