- 论坛徽章:
- 1
|
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- 113.107.24.144 192.168.0.12
DROP all -- 183.14.11.236 192.168.0.12
DROP all -- 117.9.100.242 192.168.0.12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT tcp -- 0.0.0.0/0 192.168.0.12 tcp dpt:22 state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 192.168.0.12 tcp dpt:80 state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 192.168.0.12 tcp dpt:873 state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 192.168.0.12 tcp dpt:443 state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 192.168.0.12 tcp dpt:1234 state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 192.168.0.12 tcp dpt:8001 state NEW,RELATED,ESTABLISHED
REJECT all -- 0.0.0.0/0 192.168.0.12 reject-with icmp-host-prohibited
我配置的规则,能禁止113.107.24.144,183.14.11.236 ,117.9.100.242 这三个地址访问192.168.0.12这个主机么?我配置后没有达到目标,这个三个IP还是可以访问我的主机。 |
|