[GLLUG] iptables rules
Richard Houser
rick at divinesymphony.net
Mon Nov 17 23:22:33 EST 2008
I'm really slow in replying, but I recommend you do both. After all, we
should always be doing security in layers, right? Without the default
listen rule, what happens when you add a second IPv6 address or enable IPv6?
On Tue, Nov 4, 2008 at 12:54 PM, Nicholas Kwiatkowski <kwiatk27 at msu.edu>wrote:
> Why not just bind the web server to 127.0.0.1:80 instead of 0.0.0.0:80 ??
>
> -Nick Kwiatkowski
> MSU Telecom Systems
>
> -----Original Message-----
> From: linux-user-bounces at egr.msu.edu [mailto:
> linux-user-bounces at egr.msu.edu]
> On Behalf Of Karl Schuttler
> Sent: Tuesday, November 04, 2008 11:57 AM
> To: linux-user at egr.msu.edu
> Subject: [GLLUG] iptables rules
>
> Hello all; I have a server that I want to enable access to port 80 to
> only through loopback (I want to force the user to ssh port forward
> instead of hitting it through the web. I currently am dropping inbound
> port 80 packets, which also disables my ability to port forward. What
> do i need to do to make this work; add an allow rule for loopback or
> something?
> _______________________________________________
> linux-user mailing list
> linux-user at egr.msu.edu
> http://mailman.egr.msu.edu/mailman/listinfo/linux-user
>
> _______________________________________________
> linux-user mailing list
> linux-user at egr.msu.edu
> http://mailman.egr.msu.edu/mailman/listinfo/linux-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.egr.msu.edu/mailman/public/linux-user/attachments/20081117/1935a7a6/attachment.html
More information about the linux-user
mailing list