AWS EC2 で iptables の初期設定
取り敢えず現状の設定を保存する:
$ sudo iptables-save > iptables.org $ cat iptables.org # Generated by iptables-save v1.4.18 on Wed Jun 4 03:52:40 2014 *filter :INPUT ACCEPT [231:16836] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [143:12612] COMMIT # Completed on Wed Jun 4 03:52:40 2014
これをコピーして編集:
$ cat iptables.new # Generated by iptables-save v1.4.18 on Wed Jun 4 03:52:40 2014 *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT COMMIT # Completed on Wed Jun 4 03:52:40 2014
restore して save する:
$ sudo iptables-restore < iptables.new $ sudo iptables -L $ sudo /etc/rc.d/init.d/iptables save
参考:
