Å×Å©³ë ÄÄÇ»ÅÍ

[¿ø°Ý¿äû] . [ȸ¿øÀÚ·á½Ç] [EDIT]     [Win98] [Win2000] [Win7] [win10] [WinServer] [Linux] [A/SÀÚ·á] [Driver] [UTIL] [º¹Á¦±â] [TC]

__Today: __
Your ip : 3.15.6.77
ȸ¿ø¾ÆÀ̵ð 
Æнº¿öµå
  ÄÄÇ»ÅÍ
  ¸ð´ÏÅÍ
  À×Å©/Åä³Ê-¼Ò¸ðÇ°
  ÄÄÇ»Åͺ»Ã¼ºÎÇ°
  ½ºÄɳÊ
  ÇÁ¸°ÅÍ
  ÄÄÇ»ÅͼҸðÇ°
  ³×Æ®¿öÅ©
  ¼ÒÇÁÆ®¿þ¾î

ÀüÈ­ : 062-224-6450
Æѽº : 062-227-6450

  Å×Å©³ëÄÄÇ»ÅÍ

[ ÀÚ·á½Ç ]

±¤°í¼º ±ÛÀ̳ª ºÒ¹ýÀÚ·á ¾÷·Îµå¸¦ ±ÝÇÕ´Ï´Ù.

Re: iptable ¹®¼­
¾ÆÀ̵ð : jgheo     À̸§ : °ü¸®ÀÚ     ¹øÈ£ : 59.1     Á¶È¸ : 182884
¾÷·Îµå : 2004-07-13 22:21:18

KLDP BBS
¼­·ÎÀÇ Áö½Ä°ú Á¤º¸¸¦ ±³È¯Çϼ¼¿ä.
   FAQ   °Ë»ö   ¸â¹ö¸®½ºÆ®   »ç¿ëÀÚ ±×·ì   »ç¿ëÀÚ µî·ÏÇϱ⠠
 °³ÀÎ Á¤º¸   ºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀ   ·Î±×ÀΠ
      KLDP CodeFest Âü°¡ ½Åû!
KLDP Ƽ¼ÅÃ÷, ¿­¼è°í¸® ½ÅûÇϼ¼¿ä!
 

Firewall¿¡ »ç¿ëÇÒ ÆÐŶÇÊÅ͸µ...

  
       KLDP BBS °Ô½ÃÆÇ À妽º -> ÇÁ·Î±×·¡¹Ö QnA
ÀÌÀü ÁÖÁ¦ º¸±â :: ´ÙÀ½ ÁÖÁ¦ º¸±â  
±Û¾´ÀÌ ¸Þ½ÃÁö
studyhard
beginner



°¡ÀÔ: 2003³â 8¿ù 29ÀÏ
¿Ã¸° ±Û: 4

 ½Ã°£: 2003³â8¿ù29ÀÏ 17:27    ÁÖÁ¦: Firewall¿¡ »ç¿ëÇÒ ÆÐŶÇÊÅ͸µ...  

--------------------------------------------------------------------------------

 
¸·¿¬ÇÏ°Ô Áú¹®µå·Á¼­ Á˼ÛÇÕ´Ï´Ù.

Firewall¿¡ Àû¿ëÇÒ ÆÐŶÇÊÅ͸µÀ» ¸¸µé°í ½ÍÀºµ¥¿ä..

¸¸µé¾î º¸·Á´Ï »ý°¢¸¸ ÀÖ°í ã¾Æº¸·Á´Ï Àß¾Èã¾ÆÁö°í.. ³Ê¹« °©°©Çؼ­

±Û ¿Ã·È½À´Ï´Ù.

°£´ÜÇÑ ÆÐŶÇÊÅ͸µÀÌ¶óµµ ÁÁÀ¸´Ï ±¸µ¿¹æ½ÄÀ̶ó´øÁö ¸¸µé¶§ ¾Ë¾Æ¾ßÇÒ Á¤º¸

¶ó´øÁö Á» ¾Ë·ÁÁֽðí. °ü·Ã Á¤º¸³ª ÀÚ·á ÀÖÀ¸½ÅºÐÀº ¸µÅ©Á» ÇØÁÖ¼¼¿ä..

ÁÁÀº ÇÏ·ç µÇ¼¼¿ä..^^
 
À§·Î      
 
 
gilsion
user



°¡ÀÔ: 2002³â 12¿ù 30ÀÏ
¿Ã¸° ±Û: 153
À§Ä¡: ºÎ»ê
 ½Ã°£: 2003³â8¿ù29ÀÏ 18:38    ÁÖÁ¦: Áö±Ý ¾²°íÀÖ´Â ºê¸´Áö¹æÈ­º® ¼³Á¤ÀÔ´Ï´Ù.  

--------------------------------------------------------------------------------

 
#!/bin/bash
#
# FTP passive ¸ðµå ¶§¹®¿¡ 1024-65546 Æ÷Æ®¸¦
# ´Ù ¿­¾î³ù±â ¶§¹®¿¡ ¹®Á¦ÀÇ ¼ÒÁö°¡ ´ÙºÐÈ÷ ÀÖÀ½
# ¹æ¹ýÀ» °­±¸ÇØ º¸±â·Î ÇÔ. µý»ç¶÷µéÀº ¾î¶»°Ô ÇÏÁö?
#


########## º¯¼ö¼³Á¤
IPT="/sbin/iptables"
SERVER="xxx.xxx.xxx.xxx"
NETWORK="xxx.xxx.xxx.xxx/26"


########## iptables Á¤Ã¥ ÃʱâÈ­
$IPT -X
$IPT -F
$IPT -Z


########## CHAIN Á¤Ã¥ ¼³Á¤
$IPT -P INPUT DROP
$IPT -P OUTPUT ACCEPT
$IPT -P FORWARD ACCEPT


########## ºê¸´Áö Á¢±Ù¼³Á¤
# gilsion ÀÚ¸®¿¡¼­¸¸ bridge ·Î ssh Á¢¼Ó °¡´É
$IPT -A INPUT -p tcp -s xxx.xxx.xxx.xxx --dport 22 -j ACCEPT
#$IPT -A INPUT -p tcp -s $NETWORK --dport 22 -j ACCEPT


########## ºñÁ¤»ó ÆÐŶÅëÇà ¸ðµÎ °ÅºÎ
$IPT -A FORWARD -m state --state INVALID -j DROP
$IPT -A FORWARD -p tcp --tcp-flags ALL FIN,URG,PSH -j DROP
$IPT -A FORWARD -p tcp --tcp-flags SYN,FIN SYN,FIN -j DROP
$IPT -A FORWARD -p tcp --tcp-flags SYN,RST SYN,RST -j DROP
$IPT -A FORWARD -p tcp --tcp-flags RST RST,ACK -j DROP


########## DNS QUERY
$IPT -A FORWARD -p udp --sport 53 -j ACCEPT
$IPT -A FORWARD -p udp --dport 53 -j ACCEPT

########## SERVER ¼³Á¤
# ³ª°¡´Â ÆÐŶÀº ¸ðµÎ Çã¿ë
$IPT -A FORWARD -s $SERVER -j ACCEPT
# HTTP
$IPT -A FORWARD -d $SERVER -p tcp --dport 80 -j ACCEPT
# SMTP
$IPT -A FORWARD -d $SERVER -p tcp --dport 25 -j ACCEPT
$IPT -A FORWARD -d $SERVER -p tcp --dport 587 -j ACCEPT
$IPT -A FORWARD -d $SERVER -p udp --dport 587 -j ACCEPT
# FTP
$IPT -A FORWARD -d $SERVER -p tcp --dport 21 -j ACCEPT
# FTP PASSIVE
$IPT -A FORWARD -d $SERVER -p tcp --sport 1024:65535 --dport 1024:65535 -j ACCEPT
$IPT -A FORWARD -d $SERVER -j DROP




######## ³×Æ®¿÷ Àüü ¼³Á¤
# ³ª°¡´Â ÆÐŶÀº ¸ðµÎ Çã¿ë
$IPT -A FORWARD -s $NETWORK -j ACCEPT
#HTTP, HTTPS
$IPT -A FORWARD -p tcp --sport 80 -j ACCEPT
$IPT -A FORWARD -p tcp --sport 443 -j ACCEPT
#SSH
$IPT -A FORWARD -p tcp --sport 22 -j ACCEPT
#POP3
$IPT -A FORWARD -p tcp --sport 110 -j ACCEPT
#FTP (passive mode Æ÷ÇÔ)
$IPT -A FORWARD -p tcp --sport 21 -j ACCEPT
$IPT -A FORWARD -p tcp --sport 20 -j ACCEPT
$IPT -A FORWARD -p tcp --sport 1024:65535 --dport 1024:65535 -j ACCEPT
$IPT -A FORWARD -p tcp --dport 113 -j ACCEPT
# MSN
$IPT -A FORWARD -p tcp --dport 1863:1864 -j ACCEPT
$IPT -A FORWARD -p tcp --dport 6901 -j ACCEPT
$IPT -A FORWARD -p tcp --dport 7801:7825 -j ACCEPT
$IPT -A FORWARD -p tcp --dport 6891:6900 -j ACCEPT


########## Çã¿ëÇÏÁö ¾ÊÀº ¸ðµç ÆÐŶ °ÅºÎ
$IPT -A FORWARD -j DROP
_________________
---------------------------------
ur destiny. since 197*

 
À§·Î       
 
 
ÀÌÀü ±Û Ç¥½Ã: ¸ðµç ±Û1ÀÏ7ÀÏ2ÁÖ1´Þ3´Þ6´Þ1³â ¿À·¡µÈ ±Û ¸ÕÀú»õ·Î¿î ±Û ¸ÕÀú 
 
       KLDP BBS °Ô½ÃÆÇ À妽º -> ÇÁ·Î±×·¡¹Ö QnA ½Ã°£´ë: GMT + 9 ½Ã°£(Çѱ¹)
 
ÆäÀÌÁö 1 / 1

 
 °Ç³Ê¶Ù±â: °Ô½ÃÆÇ ¼±Åà ¾Ë¸²----------------KLDP CodeFest¸í¿¹ÀÇ Àü´ç°øÁö»çÇ× °³¹ßÀÚ¸¦ À§ÇÑ °ø°£----------------ÇÁ·Î±×·¡¹Ö QnAÄ¿³Î ÇÁ·Î±×·¡¹Ö QnA »ç¿ëÀÚ¸¦ À§ÇÑ °ø°£----------------¼³Ä¡ ¹× È°¿ë QnAÄ¿³Î ¼³Ä¡, È°¿ë QnA °øºÎ----------------ÀÚÀ¯ °­ÁÂ, ÆÁÀÚ·á½Ç Æ÷·³----------------»õ¼Ò½Ä, Á¤º¸Åä·Ð, ÅäÀÇ Àç¹Ì----------------ÀÚÀ¯ °Ô½ÃÆÇÀ̹ÌÁö °¶·¯¸® ±âŸ----------------±¸ÀÎ, ±¸Á÷ÀåÅÍ 

»õ·Î¿î ÁÖÁ¦¸¦ ¿Ã¸± ¼ö ¾ø½À´Ï´Ù
´ä±ÛÀ» ¿Ã¸± ¼ö ¾ø½À´Ï´Ù
ÁÖÁ¦¸¦ ¼öÁ¤ÇÒ ¼ö ¾ø½À´Ï´Ù
¿Ã¸° ±ÛÀ» »èÁ¦ÇÒ ¼ö ¾ø½À´Ï´Ù
ÅõÇ¥¸¦ ÇÒ ¼ö ¾ø½À´Ï´Ù
ÆÄÀÏ ¾÷·Îµå : (x)
ÆÄÀÏ ´Ù¿î·Îµå : (0)
 



Powered by phpBB © 2001~2004 phpBB Group

À­±Û : 2004-06-10 19:23:14,   59¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(iptables.ZIP, 383,958Byte)ÀÌ ÀÖ½À´Ï´Ù. iptable ¹®¼­
¹Ø±Û : 2004-07-13 22:26:07,   59¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â Re: iptable ¹®¼­
  From:211.194.15.233 / Absolute number:104
Ȩ¾²±â°ü·Ã±ÛÀü´Þ¼öÁ¤»èÁ¦¸ñ·Ï
 
¹øÈ£ Á¦¸ñ ÷ºÎÆÄÀÏ Å©±â Àü¼Û À̸§ ¾÷·Îµå
72 2020-11-06 09:48:34,   72¹ø ±Û ¹Ù·Îº¸±â fortigate ¾ÏÈ£ »õ·Î ³Ö±â     0 °ü¸®ÀÚ 11-06
71 2015-05-16 15:39:49,   71¹ø ±Û ¹Ù·Îº¸±â linux ½Ã°£ ¼³Á¤     0 °ü¸®ÀÚ 05-16
70 2007-09-06 10:06:14,   70¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(vsftp.txt, 9,151Byte)ÀÌ ÀÖ½À´Ï´Ù. ftp??? ´Ù¿î·Îµå : vsftp.txt (9,151Byte) vsftp.txt 8KB 11038 °ü¸®ÀÚ 09-06
69 2007-04-07 11:08:32,   69¹ø ±Û ¹Ù·Îº¸±â »ç¼³ ip ´ë¿ª- ¹üÀ§     0 °ü¸®ÀÚ 04-07
68 2006-11-27 19:08:25,   68¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-postgresql-1.3.0-7.fc6.i386.rpm, 22,574Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-postgresql-1.3.0-7.fc6.i386 ´Ù¿î·Îµå : proftpd-postgresql-1.3.0-7.fc6.i386.rpm (22,574Byte) proftpd-postgr 22KB 6188 Â÷´Ï 11-27
67 2006-11-27 19:08:12,   67¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-mysql-1.3.0-7.fc6.i386.rpm, 23,428Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-mysql-1.3.0-7.fc6.i386 ´Ù¿î·Îµå : proftpd-mysql-1.3.0-7.fc6.i386.rpm (23,428Byte) proftpd-mysql- 22KB 6196 Â÷´Ï 11-27
66 2006-11-27 19:08:01,   66¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-ldap-1.3.0-7.fc6.i386.rpm, 27,451Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-ldap-1.3.0-7.fc6.i386 ´Ù¿î·Îµå : proftpd-ldap-1.3.0-7.fc6.i386.rpm (27,451Byte) proftpd-ldap-1 26KB 6030 Â÷´Ï 11-27
65 2006-11-27 19:07:47,   65¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-1.3.0-7.fc6.i386.rpm, 976,128Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-1.3.0-7.fc6.i386 ´Ù¿î·Îµå : proftpd-1.3.0-7.fc6.i386.rpm (976,128Byte) proftpd-1.3.0- 953KB 5880 Â÷´Ï 11-27
64 2006-11-27 18:01:37,   64¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-1.3.0kr.tar.bz2, 1,610,284Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-1.3.0kr ´Ù¿î·Îµå : proftpd-1.3.0kr.tar.bz2 (1,610,284Byte) proftpd-1.3.0k 1.54MB 5928 Â÷´Ï 11-27
63 2006-11-27 18:01:22,   63¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-1.3.0kr1.tar.bz2, 1,610,165Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-1.3.0kr1 ´Ù¿î·Îµå : proftpd-1.3.0kr1.tar.bz2 (1,610,165Byte) proftpd-1.3.0k 1.54MB 5674 Â÷´Ï 11-27
62 2006-11-27 17:21:13,   62¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(proftpd-1.2.10-1.fc1.i386.rpm, 715,171Byte)ÀÌ ÀÖ½À´Ï´Ù. proftpd-1.2.10-1.fc1.i386.rpm ´Ù¿î·Îµå : proftpd-1.2.10-1.fc1.i386.rpm (715,171Byte) proftpd-1.2.10 698KB 7641 °ü¸®ÀÚ 11-27
61 2005-10-28 09:54:20,   61¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(SUSELinux10.txt, 250,763Byte)ÀÌ ÀÖ½À´Ï´Ù. Package DescriptionsAll packages i ´Ù¿î·Îµå : SUSELinux10.txt (250,763Byte) SUSELinux10.txt 244KB 369654 °ü¸®ÀÚ 10-28
60 2004-06-14 12:39:06,   60¹ø ±Û ¹Ù·Îº¸±â ¸ÞÀϼ³Á¤ ¼³¸í     0 °ü¸®ÀÚ 06-14
60¹øÀÇ °ü·Ã±Û 2004-06-14 12:43:40,   60¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â Re: ¸ÞÀϼ³Á¤ ¼³¸í     0 °ü¸®ÀÚ 06-14
59 2004-06-10 19:23:14,   59¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(iptables.ZIP, 383,958Byte)ÀÌ ÀÖ½À´Ï´Ù. iptable ¹®¼­ ´Ù¿î·Îµå : iptables.ZIP (383,958Byte) iptables.ZIP 374KB 6694 Â÷´Ï 06-10
59¹øÀÇ °ü·Ã±Û 2004-07-13 22:21:18,   59¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â Re: iptable ¹®¼­ ¢¸     0 °ü¸®ÀÚ 07-13
59¹øÀÇ °ü·Ã±Û 2004-07-13 22:26:07,   59¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â Re: iptable ¹®¼­     0 °ü¸®ÀÚ 07-13
58 2004-06-07 23:25:44,   58¹ø ±Û ¹Ù·Îº¸±â fedora 2.0 ¼³Ä¡     0 °ü¸®ÀÚ 06-07
57 2004-02-25 11:31:01,   57¹ø ±Û ¹Ù·Îº¸±â ¸®´ª½º Ä¿³Î Ãë¾à¼ºÀÌ     0 °ü¸®ÀÚ 02-25
55 2003-06-24 09:41:39,   55¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(cgitelnet.zip, 6,522Byte)ÀÌ ÀÖ½À´Ï´Ù. telnet for ftp port ´Ù¿î·Îµå : cgitelnet.zip (6,522Byte) cgitelnet.zip 6KB 6199 °ü¸®ÀÚ 06-24
54 2002-11-29 11:00:25,   54¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(hcode_spam_filter.tar.bz2, 93,421Byte)ÀÌ ÀÖ½À´Ï´Ù. filter¸¦ ÀÌ¿ëÇÑ ½ºÆÔÁ¦°Å ´Ù¿î·Îµå : hcode_spam_filter.tar.bz2 (93,421Byte) hcode_spam_fil 91KB 6244 Admin 11-29
53 2002-10-31 12:29:01,   53¹ø ±Û ¹Ù·Îº¸±â Linux/Slapper.worm.B -------.cinik     0 Admin 10-31
52 2002-08-13 17:30:24,   52¹ø ±Û ¹Ù·Îº¸±â ½ºÆÔ¸ÞÀÏ Â÷´Ü¹æ¹ý     0 Admin 08-13
52¹øÀÇ °ü·Ã±Û 2002-08-13 18:47:20,   52¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â Re: ½ºÆÔ¸ÞÀÏ Â÷´Ü¹æ¹ý     0 Admin 08-13
52¹øÀÇ °ü·Ã±Û 2002-11-28 11:59:46,   52¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â Re: ½ºÆÔ¸ÞÀÏ Â÷´Ü¹æ¹ý     0 °ü¸®ÀÚ 11-28
51 2002-05-24 15:19:42,   51¹ø ±Û ¹Ù·Îº¸±â ¸®´ª½º °ü¸®ÀÚ¸¦À§ÇÑ ÆÄ¿ö ÆÁ     0 °ü¸®ÀÚ 05-24
50 2002-05-20 12:31:05,   50¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(Coyote Linux.exe, 4,329,657Byte)ÀÌ ÀÖ½À´Ï´Ù. coyote - last all zip ¸®¶ó ÄÚ¿äÅ× ´Ù¿î·Îµå : Coyote Linux.exe (4,329,657Byte) Coyote Linux.e 4.13MB 8739 °ü¸®ÀÚ 05-20
50¹øÀÇ °ü·Ã±Û 2002-05-22 10:37:51,   50¹øÀÇ °ü·Ã±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(msn-enable.tar, 163,840Byte)ÀÌ ÀÖ½À´Ï´Ù. coyote - last all zip ¸®¶ó ÄÚ¿ä ´Ù¿î·Îµå : msn-enable.tar (163,840Byte) msn-enable.tar 160KB 6516 °ü¸®ÀÚ 05-22
49 2002-05-02 00:02:48,   49¹ø ±Û ¹Ù·Îº¸±â ȨÆäÀÌÁö °Ë»ö»çÀÌÆ® µî·ÏÆÁ     0 °ü¸®ÀÚ 05-02
48 2002-04-12 10:01:40,   48¹ø ±Û ¹Ù·Îº¸±â,   ÷ºÎÆÄÀÏ(forwarding.txt, 3,347Byte)ÀÌ ÀÖ½À´Ï´Ù. À¯µ¿ ipÀÇ °íÁ¤È­ -forwarding Æ÷¿öµù ´Ù¿î·Îµå : forwarding.txt (3,347Byte) forwarding.txt 3KB 6939 °ü¸®ÀÚ 04-12
 


Copyright (C) 2001 jog.co.kr All rights reserved.