11-06-2012
Linux iptables -> is it possible?
Hi!
I have a dedicated hosting working with 2 ips.
Is it possible to block all connections but 1 in all existing ports for only 1 of my ips?
I mean like, I have 2 ips for example: 190.x.x.5 and 190.x.x.6
I want that all the connections going to 190.x.x.6 in all ports get rejected but only 1 connection, my laptop ip which is (example) 80.x.x.1
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I have already compiled the kernel and configured it to run as a firewall. My computer has 2 NICs and is on two seperate networks. I can ping both networks from my computer, but workstations on one network can not ping workstations on the other.
What Scripts or commands do I need to install ? (2 Replies)
Discussion started by: Deuce
2 Replies
2. UNIX for Advanced & Expert Users
I have installed a linux 9 router/firewall and have issues with outside DNS queries making it in. here are my IPTABLE rules, can anyone make some suggestions?
ETH1 is my outside facing Interface, ETH0 is my inside facing interface.
Accept If input interface is not eth1
Accept If protocol is... (1 Reply)
Discussion started by: frankkahle
1 Replies
3. Linux
I have installed a linux 9 router/firewall and have issues with outside DNS queries making it in. here are my IPTABLE rules, can anyone make some suggestions?
ETH1 is my outside facing Interface, ETH0 is my inside facing interface.
Accept If input interface is not eth1
Accept If protocol... (6 Replies)
Discussion started by: frankkahle
6 Replies
4. UNIX for Dummies Questions & Answers
I'm new to Linux and I made a big mistake at work recently locking myself out of our own server :(.
I did iptables -F first as the tutorial said and then entered the rules. I wanted to start over again so I did iptables -F and it locked us out. We had to get someone to physically restart... (0 Replies)
Discussion started by: nogumo
0 Replies
5. Cybersecurity
HI all,
I have setup IPTables firewall/Router and my home network, with address space 192.168.10.XXX
Form my private network hosts, i can ping the gateway ( 192.168.10.101 ) , but the reverse is not happening.
Can someone help me as of what i need to do, so that i can ping my private... (1 Reply)
Discussion started by: chandan_m
1 Replies
6. Cybersecurity
I noticed a few w00tw00ts in our Apache2 logfile the other day, so I thought I would write a quick post on blocking them with iptables. Feel free to improve upon any of my scripts or ideas in this thread.
First of all, what is a w00tw00t and where might we find one?
Well, a w00tw00t is an... (10 Replies)
Discussion started by: Neo
10 Replies
7. Cybersecurity
Hello,
I am currently using a Sonicwall firewall to protect a class C network of public IP addresses. The sonicwall allows me to specify which IP's will be on the DMZ port and the remainder are on the LAN port by default. I would like to replace this Sonicwall with a linux box and use iptables... (3 Replies)
Discussion started by: richard987
3 Replies
8. Homework & Coursework Questions
Creating a large number of rules such as 100000, iptables will produce errors after 42000 rules "iptables: Unknown error 18446744073709551615".
But another machine where i have debian virtual machine I can easily run the sciprt of 100000 of rules
I am waiting for your reply
4.... (1 Reply)
Discussion started by: tahirfattani
1 Replies
9. Debian
I spent a lot of time trying to implement outbound traffic filtering with: cgroups + tc + iptables on Debian Jessie. Unfortunately there is still something wrong.
The biggest issue is:
- cgroups install + config
- net_cls subsystem implementation
- packets marking with net_cls
- appropriate... (0 Replies)
Discussion started by: Novi
0 Replies
LEARN ABOUT DEBIAN
polygraph
POLYGRAPH(7) User Commands POLYGRAPH(7)
NAME
Polygraph - performance benchmark for web intermediaries
DESCRIPTION
Web Polygraph is a performance testing tool for caching proxies, origin server accelerators, L4/7 switches, content filters, and other Web
intermediaries. Polygraph's features include:
* high-performance HTTP clients and servers
* realistic HTTP, FTP, and SSL traffic generation
* HTTP Basic, NTLM, and Negotiate proxy authentication
* LDAP-friendly generation of user credentials
* flexible content simulation
* ready-to-use standard workloads for benchmarking
* powerful domain-specific configuration language
* portable open-source implementation
* friendly commercial support
Web Polygraph consists of many tools listed below. See individual man pages for more information. Detailed documentation is available at
www.web-polygraph.org.
polygraph-aka - IP aliases manipulation tool
polygraph-beepmon - forwards BEEP messages to an external program
polygraph-cdb - content database manipulation tool
polygraph-client - Web Polygraph client simulator
polygraph-cmp-lx - log comparison tool
polygraph-distr-test - distribution test
polygraph-dns-cfg - DNS server configuration tool
polygraph-lr - console log extractor
polygraph-ltrace - trace extractor
polygraph-lx - stats extractor
polygraph-pgl2acl - translates PGL access rules into Squid Proxy ACLs
polygraph-pgl2eng - PGL to English converter
polygraph-pgl2ips - PGL IP addresses calculator
polygraph-pgl2ldif - LDIF (and other text-based) configuration generator
polygraph-pgl-test - PGL validator
polygraph-pmix2-ips - PolyMix-2 address calculator
polygraph-pmix3-ips - PolyMix-3 address calculator
polygraph-polymon - interactive test monitoring tool
polygraph-polyprobe - tests TCP throughput in a full client/server mesh
polygraph-polyrrd - supplies run-time Polygraph stats to RRDtool
polygraph-pop-test - predicts cache hit ratios for a given workload
polygraph-reporter - HTML report generator
polygraph-rng-test - random number generator test
polygraph-server - Web Polygraph server simulator
polygraph-udp2tcpd - converts UDP monitoring messages into a TCP stream read by polymon
polygraph-webaxe4-ips - WebAxe-4 address calculator
COPYRIGHT
Copyright (C) 2003-2006 The Measurement Factory, Inc.
SEE ALSO
polygraph-aka(1), polygraph-beepmon(1), polygraph-cdb(1), polygraph-client(1), polygraph-cmp-lx(1), polygraph-distr-test(1),
polygraph-dns-cfg(1), polygraph-lr(1), polygraph-ltrace(1), polygraph-lx(1), polygraph-pgl2acl(1), polygraph-pgl2eng(1),
polygraph-pgl2ips(1), polygraph-pgl2ldif(1), polygraph-pgl-test(1), polygraph-pmix2-ips(1), polygraph-pmix3-ips(1), polygraph-polymon(1),
polygraph-polyprobe(1), polygraph-polyrrd(1), polygraph-pop-test(1), polygraph-reporter(1), polygraph-rng-test(1), polygraph-server(1),
polygraph-udp2tcpd(1), polygraph-webaxe4-ips(1)
http://www.web-polygraph.org/ - project web site
Web Polygraph February 2010 POLYGRAPH(7)