Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/pilebones/fw-iptables-vps
Firewall configuration with Iptables for VPS
https://github.com/pilebones/fw-iptables-vps
Last synced: 17 days ago
JSON representation
Firewall configuration with Iptables for VPS
- Host: GitHub
- URL: https://github.com/pilebones/fw-iptables-vps
- Owner: pilebones
- Created: 2015-11-10T17:04:37.000Z (about 9 years ago)
- Default Branch: master
- Last Pushed: 2015-11-10T17:28:32.000Z (about 9 years ago)
- Last Synced: 2023-02-27T08:05:31.433Z (almost 2 years ago)
- Language: Shell
- Size: 0 Bytes
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# fw-iptables-vps
Firewall configuration with Iptables for VPS (like OVH)
## Requirements
```bash
apt-get install chkconfig
```
## Optionnal requirements
```bash
apt-get install fail2ban
```
## Security notice
Default allowed protocol :
- SSH (port 22)
- SMTP (port 25 : OUTPUT only)
- DNS (port 53)
- HTTP (port 80)
- HTTPS (port 443: OUTPUT only)
- GIT (port 9418)
- OVH for the supervision (port 6100/6200)
List of common attack this settings prevent :
- TCP-SYN/FIN/ACK scan
- TCP-XMAS scan
- Ping of Death
- Teardrop (fragmented UDP packets)
- ...
## How to install
```bash
su
cd /root/
git clone [email protected]:pilebones/fw-iptables-vps.git
mv fw-iptables-vps/ firewall
cd firewall
vim ip-ban.bd
vim ip-white-list.bd
./deploy.sh
./apply.sh
```
__Note :__ Don't miss to edit and update "ip-ban.bd" and "ip-white-list.bd" files by the future.
## Limitations
Currently, tested only on a VPS with Debian Jessie as OS