Working, but not for bifrost...
This commit is contained in:
parent
97e1c41da5
commit
b84e97df55
|
@ -1,6 +1,8 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
apt install ipset
|
apt install ipset
|
||||||
|
|
||||||
|
IP2=$(ifconfig | grep eth0 -A 1 | grep inet | awk {'print $2'})
|
||||||
|
|
||||||
iptables -F
|
iptables -F
|
||||||
iptables -t nat -F
|
iptables -t nat -F
|
||||||
iptables -t mangle -F
|
iptables -t mangle -F
|
||||||
|
@ -25,6 +27,12 @@ ss -tunlp | grep LISTEN | awk {'print $5'} | sed 's/.*://' | sort | uniq > /tmp/
|
||||||
for IP in $(cat /tmp/portyotwarte.txt); do iptables -A INPUT -p udp --dport $IP -j ACCEPT; done
|
for IP in $(cat /tmp/portyotwarte.txt); do iptables -A INPUT -p udp --dport $IP -j ACCEPT; done
|
||||||
for IP in $(cat /tmp/portyotwarte.txt); do iptables -A INPUT -p tcp --dport $IP -j ACCEPT; done
|
for IP in $(cat /tmp/portyotwarte.txt); do iptables -A INPUT -p tcp --dport $IP -j ACCEPT; done
|
||||||
|
|
||||||
|
iptables -A INPUT -i lo -j ACCEPT
|
||||||
|
iptables -A OUTPUT -o lo -j ACCEPT
|
||||||
|
|
||||||
|
iptables -A INPUT -s $IP2 -j ACCEPT
|
||||||
|
iptables -A OUTPUT -d $IP2 -j ACCEPT
|
||||||
|
|
||||||
iptables -A INPUT -j DROP
|
iptables -A INPUT -j DROP
|
||||||
iptables -A FORWARD -j DROP
|
iptables -A FORWARD -j DROP
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue