[DiscordArchive] Did you move your docker host to a DMZ or something?
[DiscordArchive] Did you move your docker host to a DMZ or something?
Original source
iptables -A INPUT -p tcp --dport 3306 -j DROP
rektbyfaith
01-17-2023, 09:49 PM #11Archived author: Foe • Posted: 2023-01-17T21:49:49.686000+00:00
Original source
iptables -A INPUT -p tcp --dport 3306 -j DROP
Original source
that will allow it on localhost level but drop it from any external connection
rektbyfaith
01-17-2023, 09:50 PM #12Archived author: Foe • Posted: 2023-01-17T21:50:08.284000+00:00
Original source
that will allow it on localhost level but drop it from any external connection
Original source
Sounds good - I didn’t realize the firewall was that open by default
rektbyfaith
01-17-2023, 09:51 PM #13Archived author: notsure • Posted: 2023-01-17T21:51:40.013000+00:00
Original source
Sounds good - I didn’t realize the firewall was that open by default
Original source
iptables comes completely bare, you'll have to build the rules yourself
rektbyfaith
01-17-2023, 09:52 PM #14Archived author: Foe • Posted: 2023-01-17T21:52:31.898000+00:00
Original source
iptables comes completely bare, you'll have to build the rules yourself
Original source
Do you have local access to the server?
rektbyfaith
01-17-2023, 09:53 PM #15Archived author: Foe • Posted: 2023-01-17T21:53:29.799000+00:00
Original source
Do you have local access to the server?
Original source
Or physical/console level, I should say
rektbyfaith
01-17-2023, 09:54 PM #16Archived author: Foe • Posted: 2023-01-17T21:54:31.195000+00:00
Original source
Or physical/console level, I should say
Original source
I can, if necessary. Right now it’s remote.
rektbyfaith
01-17-2023, 09:54 PM #17Archived author: notsure • Posted: 2023-01-17T21:54:31.489000+00:00
Original source
I can, if necessary. Right now it’s remote.
Original source
```# Set default chain policies
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
# Accept on localhost
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT
# Allow established sessions to receive traffic
iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT```
rektbyfaith
01-17-2023, 09:54 PM #18Archived author: Foe • Posted: 2023-01-17T21:54:43.815000+00:00
Original source
```# Set default chain policies
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
# Accept on localhost
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT
# Allow established sessions to receive traffic
iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT```
Original source
Be careful with that
rektbyfaith
01-17-2023, 09:54 PM #19Archived author: Foe • Posted: 2023-01-17T21:54:54.960000+00:00
Original source
Be careful with that
Original source
Added the rules, but can still hit the database remotely
rektbyfaith
01-17-2023, 09:55 PM #20Archived author: notsure • Posted: 2023-01-17T21:55:13.004000+00:00
Original source
Added the rules, but can still hit the database remotely
1 Guest(s)
1 Guest(s)