Basic iptables for a webserver: SSL Tomcat, postgres, ssh and that's it.

Posted by Paperino on Server Fault See other posts from Server Fault or by Paperino
Published on 2010-05-23T05:29:47Z Indexed on 2010/05/23 5:41 UTC
Read the original article Hit count: 266

Filed under:
|
|
|
|

This is probably as basic as it gets but I'm a developer and really have no experience with iptbles.

The only connections I need opened are:

eth0 (outward facing)

  1. ssh
  2. ping
  3. SSL to tomcat (forward port 443 to 8443)

eth1(local subnet)

  1. connection to postgres server

Everything else should be blocked. My current attempts seem to be leaving all other ports open. I wonder what gives.

Thanks serverfault!

© Server Fault or respective owner

Related posts about ssh

Related posts about ssl