I write using iptables firewall content is as follows:
# $IPT - P INPUT DROP close all request
# $IPT - P FORWARD ACCEPT open all jump
# $IPT - P OUTPUT ACCEPT open all the back end of the

INPUT - m $IPT - A state - the state RELATED to ESTABLISHED -j ACCEPT # state module to have the attachment
Success and the packet is sent with our host packaging bag them

# $IPT - A INPUT -p TCP -- dport 8080 -j ACCEPT
$IPT - A INPUT -p TCP -- dport 22 -j ACCEPT # open via SSH link server port
$IPT - A INPUT - s 10.0.0.49 -p TCP -- dport 8080 -j ACCEPT # open port of the main program
$IPT - A INPUT - s 10.0.0.48 -p TCP -- dport 3000 -j ACCEPT
$IPT - A INPUT - s 10.0.0.48 -p TCP -- dport 8080 -j ACCEPT

$IPT - A INPUT - s 127.0.0.1 -p TCP -- dport 3000 -j ACCEPT
$IPT - A INPUT -p icmp -m icmp, icmp -type # 8 - j ACCEPT let remote host don't know our store
In, also won't accept ping response

Configuration is complete can run normally
But today suddenly found a firewall running failure
Then modify the firewall to as shown in the following
# $IPT - P INPUT DROP close all request
# $IPT - P FORWARD ACCEPT open all jump
# $IPT - P OUTPUT ACCEPT open all the back end of the

INPUT - m $IPT - A state - the state RELATED to ESTABLISHED -j ACCEPT # state module to have the attachment
Success and the packet is sent with our host packaging bag them

$IPT - A INPUT -p TCP -- dport 8080 - j ACCEPT
$IPT - A INPUT -p TCP -- dport 22 -j ACCEPT # open via SSH link server port
# $IPT - A INPUT - s 10.0.0.49 -p TCP -- dport 8080 - j # ACCEPT open port of the main program
# $IPT - A INPUT - s 10.0.0.48 -p TCP -- dport 3000 - j ACCEPT
# $IPT - A INPUT - s 10.0.0.48 -p TCP -- dport 8080 - j ACCEPT
$IPT - A INPUT - s 1.93.129.64 -p TCP -- dport 3000 - j # ACCEPT this A IP networks outside for 10.0.0.48
$IPT - A INPUT - s 127.0.0.1 -p TCP -- dport 3000 -j ACCEPT
$IPT - A INPUT -p icmp -m icmp, icmp -type # 8 - j ACCEPT let remote host don't know our store
In, also won't accept ping response

A firewall can run again

I was using a cloud of Dr Server


Wish I would be a great god give to reassure configuration is a problem with the firewall or operations is a problem with the server?

CodePudding user response:

What was the error message you got at the first place?