How can I manually set the iptables rules for my CSN?

Owned by Copy Page Tree
Last updated: Jun 08, 2017 by Aaron Enfield
1 min read

If when running iptables -L, there are no rules on the CSN, then you can run:

 /opt/caringo/csn/bin/setfirewall.sh

to regenerate these rules.

 

The rules should look like this:

[root@csninternalnic ~]# iptables -L

Chain INPUT (policy ACCEPT)
target     prot opt source               destination        
CSNFIREWALL  all  --  anywhere             anywhere           
 
Chain FORWARD (policy ACCEPT)
target     prot opt source               destination        
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere            
 
Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination        
 
Chain CSNFIREWALL (1 references)
target     prot opt source               destination        
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:http
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:ssh
ACCEPT     udp  --  anywhere             anywhere            udp spt:domain dpts:1024:65535
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:webcache
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:8090
ACCEPT     udp  --  anywhere             anywhere            udp dpt:ntp
ACCEPT     udp  --  anywhere             anywhere            udp dpt:snmp
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:snmp
ACCEPT     udp  --  anywhere             anywhere            udp dpt:mdns
ACCEPT     icmp --  anywhere             anywhere            icmp echo-request
DROP       all  --  anywhere             anywhere    


© DataCore Software Corporation. · https://www.datacore.com · All rights reserved.