author | ft |
Thu, 27 Feb 2014 17:12:59 +0100 | |
changeset 0 | 60bc07f3f415 |
permissions | -rwxr-xr-x |
ft@0 | 1 |
#!/bin/sh |
ft@0 | 2 |
|
ft@0 | 3 |
# Only run once (not for every interface) |
ft@0 | 4 |
if [ "$IFACE" != "--all" ] |
ft@0 | 5 |
then |
ft@0 | 6 |
exit 0 |
ft@0 | 7 |
fi |
ft@0 | 8 |
|
ft@0 | 9 |
# only allow ssh connections on eth0 (host only) |
ft@0 | 10 |
iptables -A INPUT -i eth0 -p tcp --dport 22 -j ACCEPT |
ft@0 | 11 |
iptables -A INPUT -p tcp --dport 22 -j REJECT |