Set Up a Default Webserver and Limit Access
- These instructions are intended to address specifically the following scenario: Set Up a Default Configuration Webserver and Limit Access
- I’ll be working from a Liquid Web Self Managed CentOS 6.5 server, and I’ll be logged in as root.
yum -y install httpd
service httpd start
chkconfig httpd on
For a refresher on editing files with vim see: New User Tutorial: Overview of the Vim Text Editor
vim /var/www/html/index.html
Add the following to the text file, and then save and close the text file:
This is a test HTML file!
echo 'This is a test HTML file!' > /var/www/html/index.html
Allow SSH from a specific network, in this case 10.100.100.0/24:
iptables -A INPUT -i eth0 -p tcp -s 10.100.100.0/24 --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 22 -m state --state ESTABLISHED -j ACCEPT
Allow HTTP from a specific network, in this case 10.100.100.0/24:
iptables -A INPUT -i eth0 -p tcp -s 10.100.100.0/24 --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
Allow ping via ICMP:
iptables -A OUTPUT -p icmp --icmp-type echo-request -j ACCEPT
iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT
Set default chain policies:
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP
Save the configuration:
service iptables save
Start iptables:
service iptables start
Related Articles:
About the Author: J. Mays
As a previous contributor, JMays shares his insight with our Knowledge Base center. In our Knowledge Base, you'll be able to find how-to articles on Ubuntu, CentOS, Fedora and much more!
Our Sales and Support teams are available 24 hours by phone or e-mail to assist.
Latest Articles
How to Clone a Drupal Site to Another Domain
Read ArticleTop Eight Virtualization Security Issues and Risks
Read ArticleAccessing Man Pages on Ubuntu 16.04 LTS
Read ArticlePremium Business Email Pricing FAQ
Read ArticleMicrosoft Exchange Server Security Update
Read Article