2
I have some vps space but I get alot of scans based on what I see in iftop. I tried some iptables stuff but it gets tiring and useless to put all the ips that I see in the logs. I am wondering about the best way to ensure that I can get steady connection to my vps while keeping pretty much everything off until I want to enable via iptables./
At the moment I have Debian and I have running active Vpn and Ssh on it. I would like the bare bones essential stuff+vpn+ssh accepting incoming and outgoing connections, and the rest can stay out of my front yard.
Basically I am looking for a list of commands that can work with Debian. i tried bunch of stuff based on what I saw on the net. Some stuff threw error, some got me confused. Anyways I was able to couple things work like accepting connections on vpn. I just need a clear list I guess.
I do not need to define single ip that is responsible for the connections, so ports would do it for me. I can add the ip destinations later myself.
thanks
If ESTABLISHED,RELATED accept the connection. You can make a list of the good ports and do an inverse block. If port are not ##,###,###,or ### DROP and protocol is ??? – cybernard – 2014-01-24T04:30:40.230
Maybe you might need something like this
– machineaddict – 2014-02-13T23:31:46.377