Network and Firewall Config

by | Dec 11, 2014 | Important, Linux, Raspberry PI, Server Administration | 0 comments

Country Code Blocks

Country Code Listing
http://www.worldatlas.com/aatlas/ctycodes.htm

UA,RU,RO,CN,HU,SK

Debug Commands

Server network and firewall config debug commands.

Server network and firewall config debug commands.

Debug 1. tcptrack

1
2
sudo apt-get install tcptrack
tcptrack -d-ieth0

Debug 2. top

1
2
3
top
Shift+M
q #quit

Debug 3. netstat

1
2
sudo netstat -tupn
CTRL+Z #quit

Debug 3. List Logged in Users

1
 

CSF Section

My firewall of choice for Linux servers

# CSF: Allow single address per port tcp|in|d=80|s=xxx.xxx.xxx.xxx
# CSF: Cloudflare Allowed IP's 103.21.244.0/22 103.22.200.0/22 103.31.4.0/22 104.16.0.0/12 108.162.192.0/18 141.101.64.0/18 162.158.0.0/15 172.64.0.0/13 173.245.48.0/20 188.114.96.0/20 190.93.240.0/20 197.234.240.0/22 198.41.128.0/17 199.27.128.0/21 2400:cb00::/32 2405:8100::/32 2405:b500::/32 2606:4700::/32 2803:f800::/32
# CSF: Beanstalk Allowed IP's 50.31.156.48/28 50.31.156.64/28 50.31.189.108/30 50.31.189.112/29 50.31.189.120/31 50.31.189.122/32
# CSF Dev server blanket service block # Turn off mail imap, pop, smtp and ftp. # Don't forget to add the office ip address to the allowed/whitelist list tcp|in|d=55455|s=0.0.0.0/0 # Change to your SSH port tcp|in|d=80|s=0.0.0.0/0 tcp|in|d=443|s=0.0.0.0/0 tcp|in|d=21|s=0.0.0.0/0 tcp|in|d=20000|s=0.0.0.0/0 tcp|in|d=10000|s=0.0.0.0/0 tcp|in|d=6081|s=0.0.0.0/0 tcp|in|d=587|s=0.0.0.0/0
Share This