What rules do you consider are needed in order to have the perfect fw script for a webserver, other than filter everything but ports 22, 80, and 443?
Thanks in advance!
I have a script that is several hundred lines long full of iptables rules (I've spent way too much time on this, and had far too much fun testing it) but when I run the script, the rules go in wrong - that is, when I do...
The order (being that iptables starts at the top of the chain and works its way down) is out of order, but it's ordered properly in the script.
I installed a generated firewall script, but now wicd does no more connect to my router via wlan0. I have to switch off the firewall, wait until wicd connects and then start the firewall again. Which ports do I have to open?
I run a webserver that caters to an entirely local crowd, so to keep hacking attempts to a minimum, I have inserted a bunch of international IP-blocking rules into my iptables, but my filters don't seem to be working.
For instance, in the *filter section I have the following rule:
-A INPUT -s 101/8 -p tcp -m tcp -j DROP
as part of the set of rules to filter out international traffic.
I am running a script which updates firewall rules on a Debian machine via SSH as well as other actions. However, after the script runs, my connection just hangs. I am able to close the terminal and reconnect just fine and when I reconnect, my script is still running.