IPTables - Port rules
Anyone know how to block external (internal) access to a port on a *nix machine. Currently running a SQUID(NTLM)>DANSGUARDIAN>SQUID(CACHE) setup and its working beautifully, only problem. Changing ports allows skipping of both S1, and DG.
NTLM running on 8080, DG running on 1355, CACHE running on 1356. I can change the port to 1356 and head straight onto the interweb, how do I only allow 127.0.0.1 to access port 1356?
I found this code somewhere on the interweb, however it wasn't related to the topic.
Not quite sure, not sure on the /24 either.
iptables -t nat -D PREROUTING -s ! 127.0.0.1/24 -p tcp --dport 1356 -j DROP
Easier way, make squid listen only on localhost.
Thanks Geoff, I did think of that but had tried 127.0.0.1:1356 and it still allowed a connection through, however localhost works perfectly!
Originally Posted by Geoff
P.S Would the above code do the same?