아파치와 텔넷을 위해 iptables를 수정하자
# vi /etc/sysconfig/iptables # Firewall configuration written by system-config-securitylevel # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A INPUT -j RH-Firewall-1-INPUT -A FORWARD -j RH-Firewall-1-INPUT -A RH-Firewall-1-INPUT -i lo -j ACCEPT -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall-1-INPUT -p 50 -j ACCEPT -A RH-Firewall-1-INPUT -p 51 -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT -A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT # 텔넷 23 아파치 80 -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 23 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 80 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT위와같이 라인을 삽입 후 저장
#/etc/init.d/iptables restartipatables 재시작
'Linux' 카테고리의 다른 글
| [Linux] 패키지매니저 이용시 패키지 검색 (0) | 2012.01.16 |
|---|---|
| [Linux] SELinux 설정 아파치의 하부디렉토리에서 forbidden발생 (0) | 2011.12.06 |
| [Linux] CentOS profile설정 - command not found (0) | 2011.12.06 |
| [Linux]우분투 vi 에디터 설정 (0) | 2010.10.21 |
| [Linux] 우분투 Root 설정 (0) | 2010.10.21 |
