|
samba与iptables
SERVER="192.168.0.1" # Server IP Address
NETMASK="255.255.0.0" # Server Netmask NETWORK="192.168.0.0" # Local area network BROADCAST="192.168.255.255" # Local area network Broadcast Address iptables -A INPUT -i lo -j ACCEPT iptables -A OUTPUT -o lo -j ACCEPT iptables -A INPUT -p udp -s ${NETWORK}/${NETMASK} -d ${SERVER}/32 -m multiport --dports 137,138 -j ACCEPT iptables -A INPUT -p tcp -s ${NETWORK}/${NETMASK} -d ${SERVER}/32 -m multiport --dports 139,445 -j ACCEPT iptables -A INPUT -p udp -s ${NETWORK}/${NETMASK} -d ${BROADCAST}/32 --dport 13 7 -j ACCEPT iptables -A INPUT -p udp -d ${SERVER}/32 -m multiport --dports 137,138 -j DROP iptables -A INPUT -p tcp -d ${SERVER}/32 -m multiport --dports 139,445 -j DROP iptables -A OUTPUT -s ${SERVER}/32 -d ${NETWORK}/32 -m state --state ESTABLISHED,RELATED -j ACCEPT 以上资料来源于samba的非官方文档。 from site : http://www./hofman/2370.html
|
|
|
来自: 农夫子oice > 《iptables》
