Default configuration iptables, how to avoid to be blocked when flushing tables?Unable to make outbound SNMP...
Tesla coil and Tesla tower
Why solving a differentiated integral equation might eventually lead to erroneous solutions of the original problem?
Sort by contiguous digits as a single number
Quick Yajilin Puzzles: Scatter and Gather
How to say "cheat sheet" in French
What would influence an alien race to map their planet in a way other than the traditional map of the Earth
Labview vs Matlab??Which one better for image processing?
Why does my browser attempt to download pages from http://clhs.lisp.se instead of viewing them normally?
I nicked the tip of the taper on a bottom bracket spindle. Is it still safe?
List of 1000 most common words across all languages
Why does (inf + 0j)*1 evaluate to inf + nanj?
Is it a good idea to leave minor world details to the reader's imagination?
Why is a road bike faster than a city bike with the same effort? & how much faster it can be?
Why did the Soviet Union not "grant" Inner Mongolia to Mongolia after World War Two?
Why are there two fundamental laws of logic?
Symbol for function composition like a big sum
practicality of 30 year fix mortgage at 55 years of age
What exactly did this mechanic sabotage on the American Airlines 737, and how dangerous was it?
A file manager to open a zip file like opening a folder, instead of extract it by using a archive manager
Pi Zero Work With Embedded WIFI And Cellular USB Modem
Does the Way of Shadow monk's Shadow Step feature count as a magical ability?
Do we have any particular tonal center in mind when we are NOT listening music?
A food item only made possible by time-freezing storage?
Can I see the total amount of my crafting materials?
Default configuration iptables, how to avoid to be blocked when flushing tables?
Unable to make outbound SNMP connections when IPTables is enabledIptables: matching outgoing traffic with conntrack and owner. Works with strange dropsIptables in linuxiptables configurationiptables - 2 Internetprovider - routingHow to implement iptables on lxc-container?IPTABLES - Not able to open Ports
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}
I have this base for iptables when I have a new server to configure :
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
# Keep state.
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# Loop device.
-A INPUT -i lo -j ACCEPT
# Allow PING from remote hosts.
-A INPUT -p icmp --icmp-type echo-request -j ACCEPT
# allow ssh port 22
-A INPUT -p tcp --dport 22 -j ACCEPT
# allow foobar public IP
-A INPUT -p tcp -s 9.8.7.6 -j ACCEPT
# Allow outgoing trafic
-A OUTPUT -p tcp -d 1.2.3.4 -j ACCEPT
-A OUTPUT -o enp8s0 -d 0.0.0.0/0 -j ACCEPT
COMMIT
I load this file with iptable-restore < file.
The issue is that when I flush with iptables -F, I get blocked.
What I have to do to avoid to be blocked ?
linux iptables iptables-persistent
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
add a comment
|
I have this base for iptables when I have a new server to configure :
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
# Keep state.
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# Loop device.
-A INPUT -i lo -j ACCEPT
# Allow PING from remote hosts.
-A INPUT -p icmp --icmp-type echo-request -j ACCEPT
# allow ssh port 22
-A INPUT -p tcp --dport 22 -j ACCEPT
# allow foobar public IP
-A INPUT -p tcp -s 9.8.7.6 -j ACCEPT
# Allow outgoing trafic
-A OUTPUT -p tcp -d 1.2.3.4 -j ACCEPT
-A OUTPUT -o enp8s0 -d 0.0.0.0/0 -j ACCEPT
COMMIT
I load this file with iptable-restore < file.
The issue is that when I flush with iptables -F, I get blocked.
What I have to do to avoid to be blocked ?
linux iptables iptables-persistent
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
quick internet search revealed that you have to set INPUT, OUTPUT and FORWARD connections to ACCEPT .... then flush the tables
– jsotola
37 mins ago
add a comment
|
I have this base for iptables when I have a new server to configure :
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
# Keep state.
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# Loop device.
-A INPUT -i lo -j ACCEPT
# Allow PING from remote hosts.
-A INPUT -p icmp --icmp-type echo-request -j ACCEPT
# allow ssh port 22
-A INPUT -p tcp --dport 22 -j ACCEPT
# allow foobar public IP
-A INPUT -p tcp -s 9.8.7.6 -j ACCEPT
# Allow outgoing trafic
-A OUTPUT -p tcp -d 1.2.3.4 -j ACCEPT
-A OUTPUT -o enp8s0 -d 0.0.0.0/0 -j ACCEPT
COMMIT
I load this file with iptable-restore < file.
The issue is that when I flush with iptables -F, I get blocked.
What I have to do to avoid to be blocked ?
linux iptables iptables-persistent
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
I have this base for iptables when I have a new server to configure :
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
# Keep state.
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# Loop device.
-A INPUT -i lo -j ACCEPT
# Allow PING from remote hosts.
-A INPUT -p icmp --icmp-type echo-request -j ACCEPT
# allow ssh port 22
-A INPUT -p tcp --dport 22 -j ACCEPT
# allow foobar public IP
-A INPUT -p tcp -s 9.8.7.6 -j ACCEPT
# Allow outgoing trafic
-A OUTPUT -p tcp -d 1.2.3.4 -j ACCEPT
-A OUTPUT -o enp8s0 -d 0.0.0.0/0 -j ACCEPT
COMMIT
I load this file with iptable-restore < file.
The issue is that when I flush with iptables -F, I get blocked.
What I have to do to avoid to be blocked ?
linux iptables iptables-persistent
linux iptables iptables-persistent
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
asked 1 hour ago
Mévatlavé KraspekMévatlavé Kraspek
1659 bronze badges
1659 bronze badges
quick internet search revealed that you have to set INPUT, OUTPUT and FORWARD connections to ACCEPT .... then flush the tables
– jsotola
37 mins ago
add a comment
|
quick internet search revealed that you have to set INPUT, OUTPUT and FORWARD connections to ACCEPT .... then flush the tables
– jsotola
37 mins ago
quick internet search revealed that you have to set INPUT, OUTPUT and FORWARD connections to ACCEPT .... then flush the tables
– jsotola
37 mins ago
quick internet search revealed that you have to set INPUT, OUTPUT and FORWARD connections to ACCEPT .... then flush the tables
– jsotola
37 mins ago
add a comment
|
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "106"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/4.0/"u003ecc by-sa 4.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f543048%2fdefault-configuration-iptables-how-to-avoid-to-be-blocked-when-flushing-tables%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f543048%2fdefault-configuration-iptables-how-to-avoid-to-be-blocked-when-flushing-tables%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
quick internet search revealed that you have to set INPUT, OUTPUT and FORWARD connections to ACCEPT .... then flush the tables
– jsotola
37 mins ago