iptables/firewall script for openvz [message #35001] |
Thu, 19 February 2009 04:51  |
TheStig
Messages: 94 Registered: December 2008
|
Member |
|
|
Hello community,
i have taken a small iptables script i've found years ago on a site called
http://harry.homelinux.org
and tweaked it over the years to fit my needs and adopted recently so it will secure an openvz HN with containers that have international ip-addresses.
i've written it in two parts, the init-script and an config file. it's quite specific to what type of ip filtering i need, but maybe someone out there could use it too?
as i couldn't do much testing yet there are for sure bugs and incompatibilities in there, but i thought maybe some of you would like to give it a try.
it should be relatively easy to adopt the script to your enviroment and maybe i will write a version where more options can be configured via the config file.
i will at least test and improve the script a bit and write a version that will work on containers as well (actually it should already, but there are table-rules that are not wanted inside a container).
if it's somewhat stable it maybe a thing for the iptables article in the openvz-wiki?!
looking forward to suggestions...
Joe
-
Attachment: firewall.conf
(Size: 1.44KB, Downloaded 599 times)
-
Attachment: firewall
(Size: 10.98KB, Downloaded 497 times)
[Updated on: Thu, 19 February 2009 04:56] Report message to a moderator
|
|
|