github
/
metasploitable3
mirror of https://github.com/rapid7/metasploitable3
1
Fork 0
Code Releases Activity
metasploitable3/chef/cookbooks/metasploitable/recipes/iptables.rb

27 lines
462 B
Ruby
Raw Blame History

#
# Cookbook:: metasploitable
# Recipe:: iptables
#
# Copyright:: 2017, Rapid7, All Rights Reserved.
include_recipe 'iptables::default'
iptables_rule '00_established' do
lines '-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT'
end
iptables_rule '01_ssh' do
lines "-A INPUT -p tcp --dport 22 -j ACCEPT"
end
iptables_rule '01_icmp' do
lines "-A INPUT -p icmp -j ACCEPT"
end
iptables_rule '999_drop_all' do
lines '-A INPUT -j DROP'
end
View Git Blame Copy Permalink