I must have spent over an hour now on this question, and I'm sure I'm right, and the system is faulty for checking it or something. This is the contents of my firewall file. What have I done wrong?
#!/bin/bash
#
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP
#
# Accept ongoing connections
iptables -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
#
# For your own safety, stop users logging in from other VMs
#
iptables -A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 22 ! -s 10.0.0.0/16 -j ACCE$
iptables -A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 23 ! -s 10.0.0.0/16 -j ACCE$
#
# Your changes go after here.
#
iptables -P INPUT DROP
iptables -A INPUT -i ens3 -p tcp --destination-port 80 -j DROP
iptables -A INPUT -i ens3 -p tcp --destination-port 80 -s 20.0.0.0/24 -j DROP
iptables -I FORWARD -j REJECT
iptables -A INPUT -p icmp --icmp-type echo-request -m limit --limit 1/s -j ACCEPT
iptables -A INPUT -p icmp --icmp-type echo-request -j DROP
*The last two rules are the ones related to the question*
With firewall testing tool it says "open-unlimited"
fwall tutorial, PING limit
Moderator: drgrussell
-
mikkelzzz2
- Posts: 1
- Joined: Wed Oct 12, 2016 4:35 pm
- Are you a robot or a human?: Human
Who is online
Users browsing this forum: No registered users and 5 guests