How to block ALL traffic except port 443

carlozrox · 02-03-2009, 05:24 AM

Hi!

How can block ALL traffic with iptables except the port 443.
How can enable all traffic again.

Thanks a lot!

win32sux · 02-03-2009, 06:07 AM

Quote:

Originally Posted by carlozrox

Hi!

How can block ALL traffic with iptables except the port 443.
How can enable all traffic again.

Thanks a lot!

Depends on what kind of traffic. Is this a client, a server, or a router?

Client example (block/unblock):

Code:

iptables -I OUTPUT -p TCP -o eth0 --dport ! 443 -j REJECT
iptables -D OUTPUT -p TCP -o eth0 --dport ! 443 -j REJECT

Server example (block/unblock):

Code:

iptables -I INPUT -p TCP -i eth0 --dport ! 443 -j DROP
iptables -D INPUT -p TCP -i eth0 --dport ! 443 -j DROP

Router example (block/unblock):

Code:

iptables -I FORWARD -p TCP -i eth0 -o eth1 --dport ! 443 -j REJECT
iptables -D FORWARD -p TCP -i eth0 -o eth1 --dport ! 443 -j REJECT

carlozrox · 03-11-2009, 05:15 AM

Quote:

Originally Posted by win32sux

Depends on what kind of traffic. Is this a client, a server, or a router?

Client example (block/unblock):

Code:

iptables -I OUTPUT -p TCP -o eth0 --dport ! 443 -j REJECT
iptables -D OUTPUT -p TCP -o eth0 --dport ! 443 -j REJECT

Server example (block/unblock):

Code:

iptables -I INPUT -p TCP -i eth0 --dport ! 443 -j DROP
iptables -D INPUT -p TCP -i eth0 --dport ! 443 -j DROP

Router example (block/unblock):

Code:

iptables -I FORWARD -p TCP -i eth0 -o eth1 --dport ! 443 -j REJECT
iptables -D FORWARD -p TCP -i eth0 -o eth1 --dport ! 443 -j REJECT

Great! Thanks!