version 5
# Use the following to recognise RavenCore
server_ravencore_ports="tcp/8000"
client_ravencore_ports="default"
# Use the following to recognise RavenCore SSL
server_ravencoressl_ports="tcp/8080"
client_ravencoressl_ports="default"
# Use the following to recognise tinyproxy
server_tinyproxy_ports="tcp/8888"
client_tinyproxy_ports="default"
# Use the following to avoid dhcp-client from filling the logs
server_dhcpclient_ports="udp/67"
client_dhcpclient_ports="default"
# Use the following to blacklist incoming connection from an IP
#blacklist this "21.22.51.30 21.22.51.31"
# Use the following to blacklist incoming AND outgoing connection from/to an IP
#blacklist full 22.43.16.12 65.10.11.25
interface any internet
# Use the following to enable all available protection
protection strong
server "ftp ssh smtp dns http https pop3 imap socks syslog tinyproxy ravencore ravencoressl" accept
client all accept
a o tomto
#!/bin/bash
iptables -F
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
na pc mi bezia sluzby ako apache,mysql,... proste serverove sluzby na ktore by sa nemal nikto zvonka dostat,pouzitie je na sukromnom notebooku.pripadne mi odporucte nejake ine nastavenia iptables.dakujem.