Question

0 0

iptables怎么只允许本机访问指定端口而不允许外网访问。


 # Generated by iptables-save v1.4.8 on Sat Jun 15 23:23:13 2013
*filter
:INPUT ACCEPT [35:6316]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [17:1648]
-A INPUT -p tcp -m tcp --dport 30009 -j REJECT      
-A INPUT -s 127.0.0.1/32 -p tcp -m tcp --dport 30009 -j ACCEPT
COMMIT
# Completed on Sat Jun 15 23:23:13 2013

这样貌似不行。

在服务器上是这样的


 telnet 127.0.0.1 30009
Trying 127.0.0.1...
telnet: Unable to connect to remote host: Connection refused

Linux iptables

11 years, 1 month ago

不灵不灵宅

share

不灵不灵宅 11 years, 1 month ago

Answer 1

0

两行反过来……

iptables 在遇到匹配即执行，所以先 REJECT 掉了，后边的规则没起到作用。

answered 11 years, 1 month ago

Y典娜·囧死

share

Y典娜·囧死 answered 11 years, 1 month ago

iptables怎么只允许本机访问指定端口而不允许外网访问。

不灵不灵宅

Answers

Y典娜·囧死

Your Answer