Example : Lockdown SSH

April 15, 2019 Scripts Example

We can lockdown SSH Access to VPN IP only using IP Tables.

Use scripts below to apply the lockdown :

##########################
# LOCK DOWN
##########################
for IP in 111.111.111.111 222.222.222.222 333.333.333.333 444.444.444.444/27 ; do
/sbin/iptables -A INPUT -p tcp -s $IP –dport (SSH PORT)-j ACCEPT
/sbin/iptables -A OUTPUT -p tcp -d $IP –sport (SSH PORT)-j ACCEPT
done
 
/sbin/iptables -A INPUT -p tcp –dport (SSH PORT) -j DROP
/sbin/iptables -A OUTPUT -p tcp –sport (SSH PORT)-j DROP
#####################

Recent Posts