\u3044\u308d\u3044\u308d\u60a9\u3093\u3060\u306e\u3067\u5fd8\u308c\u306a\u3044\u305f\u3081\u306b
\n<\/p>\n
\r\n# \u307e\u305a\u306f\u3059\u3079\u3066\u8a31\u53ef\r\niptables -P INPUT ACCEPT\r\niptables -P OUTPUT ACCEPT\r\niptables -P FORWARD ACCEPT\r\n\r\n# iptables \u521d\u671f\u5316\r\niptables -F INPUT\r\niptables -F OUTPUT\r\niptables -F FORWARD\r\n\r\n# \u81ea\u30db\u30b9\u30c8\u304b\u3089\u306e\u30a2\u30af\u30bb\u30b9\u3092\u3059\u3079\u3066\u8a31\u53ef\r\niptables -A INPUT -i lo -j ACCEPT\r\niptables -A OUTPUT -o lo -j ACCEPT\r\n\r\n# \u5185\u90e8\u304b\u3089\u884c\u3063\u305f\u30a2\u30af\u30bb\u30b9\u306b\u5bfe\u3059\u308b\u5916\u90e8\u304b\u3089\u306e\u8fd4\u7b54\u30a2\u30af\u30bb\u30b9\u3092\u8a31\u53ef\r\niptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT\r\n\r\n# SSH\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT\r\n# HTTP\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT\r\n# HTTPS\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT\r\n# SMTP\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT\r\n# SMTPS\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 465 -j ACCEPT\r\n# POP3\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 110 -j ACCEPT\r\n# POP3S\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 995 -j ACCEPT\r\n# IMAP\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 143 -j ACCEPT\r\n# IMAPS\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 993 -j ACCEPT\r\n# DNS\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 53 -j ACCEPT\r\niptables -A INPUT -m state --state NEW -m udp -p udp --dport 53 -j ACCEPT\r\n# OPB25\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 587 -j ACCEPT\r\n# PING\u8a31\u53ef\r\niptables -A INPUT -m state --state NEW -p icmp --icmp-type 8 -j ACCEPT\r\niptables -A INPUT -m state --state NEW -p icmp --icmp-type 0 -j ACCEPT\r\n\r\n# \u53d7\u4fe1\u3092\u7834\u68c4 \/ \u9001\u4fe1\u3092\u8a31\u53ef \/ \u901a\u904e\u3092\u62d2\u5426\r\niptables -P INPUT DROP\r\niptables -P OUTPUT ACCEPT\r\niptables -P FORWARD DROP\r\n\r\n#\u8a2d\u5b9a\u3092\u4fdd\u5b58\r\nservice iptables save\r\n<\/pre>\n","protected":false},"excerpt":{"rendered":"\u3044\u308d\u3044\u308d\u60a9\u3093\u3060\u306e\u3067\u5fd8\u308c\u306a\u3044\u305f\u3081\u306b<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[4],"tags":[],"_links":{"self":[{"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/97"}],"collection":[{"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=97"}],"version-history":[{"count":1,"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/97\/revisions"}],"predecessor-version":[{"id":98,"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/97\/revisions\/98"}],"wp:attachment":[{"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=97"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=97"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/lasters.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=97"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}