Linux4Dummies: How To Reset Linux Firewall Automatically While Testing Configuration With Remote Server Over SSH Session

Tuesday, April 10, 2012

How To Reset Linux Firewall Automatically While Testing Configuration With Remote Server Over SSH Session

A. You can easily flush out current configuration using iptables command and shell script combo. There is no built in option for this kind of settings. So you need to write a small shell script and call it from crontab file.

# reset.fw - Reset firewall# set x to 0 - No reset# set x to 1 - Reset firewall# ---------------------------------------------------------------------------------------------------------------# Added support for IPV6 Firewall# ---------------------------------------------------------------------------------------------------------------# ---------------------------------------------------------------------------------------------------------------# You can copy / paste / redistribute this script under GPL version 2.0 or above# =============================================================x=1 # set to true if it is CentOS / RHEL / Fedora boxRHEL=false
### no need to edit below ###IPT=/sbin/iptables
IPT6=/sbin/ip6tables
if [ "$x" == "1" ];
thenif [ "$RHEL" == "true" ];
then# reset firewall using redhat script /etc/init.d/iptables stop /etc/init.d/ip6tables stopelse# for all other Linux distro use following rules to reset firewall### reset ipv4 iptales ###$IPT -F
$IPT -X
$IPT -Z
for table in $(</proc/net/ip_tables_names)do$IPT -t $table -F
$IPT -t $table -X
$IPT -t $table -Z
done$IPT -P INPUT ACCEPT
$IPT -P OUTPUT ACCEPT
$IPT -P FORWARD ACCEPT
### reset ipv6 iptales ###$IPT6 -F
$IPT6 -X
$IPT6 -Z
for table in $(</proc/net/ip6_tables_names)do$IPT6 -t $table -F
$IPT6 -t $table -X
$IPT6 -t $table -Z
done$IPT6 -P INPUT ACCEPT
$IPT6 -P OUTPUT ACCEPT
$IPT6 -P FORWARD ACCEPT
fielse :fi`# chmod +x /root/reset.fw`
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Create cronjon to reset current configuration every 5 minutes, enter`# crontab -e`
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
OR`# vi /etc/crontab`
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Append following settings:`/5 * * * root /root/reset.fw >/dev/null 2>&1`
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
Please remember to set x to 0 once a working configuration has been created for your Linux system.
A. You can easily flush out current configuration using iptables command and shell script combo. There is no built in option for this kind of settings. So you need to write a small shell script and call it from crontab file.
Create a firewall reset shell script
#!/bin/bash

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)