关闭 Debian 计算机上除一个端口之外的所有端口

Question

您可以设置默认的 iptables 策略，以便它只接受来自特定端口（或一定范围的端口）的通信：

## Drop all incoming traffic on all ports

iptables -P INPUT DROP
## Allow connections from one port
## Do not include brackets when entering the following variables, 
## [portnum] is just 80 not [80]
## [interface] == default network interface (such as eth0)
## [protocol] == the protocol you want, such as tcp, udp, and etc
## [portnum] == port number, such as 80, 443, and etc

iptables -A INPUT -i [interface] -p [protocol] --dport [portnumb] -J ACCEPT

## Allow a range of ports, such as ports 1001-1005

iptables -A INPUT -i [interface] -p [protocol] --dport [portnum]:[portnum] -J ACCEPT

希望这可以帮助。

Answer 1

您可以设置默认的 iptables 策略，以便它只接受来自特定端口（或一定范围的端口）的通信：

## Drop all incoming traffic on all ports

iptables -P INPUT DROP
## Allow connections from one port
## Do not include brackets when entering the following variables, 
## [portnum] is just 80 not [80]
## [interface] == default network interface (such as eth0)
## [protocol] == the protocol you want, such as tcp, udp, and etc
## [portnum] == port number, such as 80, 443, and etc

iptables -A INPUT -i [interface] -p [protocol] --dport [portnumb] -J ACCEPT

## Allow a range of ports, such as ports 1001-1005

iptables -A INPUT -i [interface] -p [protocol] --dport [portnum]:[portnum] -J ACCEPT

希望这可以帮助。

关闭 Debian 计算机上除一个端口之外的所有端口

答案1

相关内容