K
Kazuto_Kirigaya
Hey, I am using a windows server to serve my website. I am also using a reverse proxy to protect against DDoS attacks. I need to allow traffic from only the reverse proxies IP addresses. I have a sample of what I want to do that uses Linux iptables.
iptables -I INPUT -p tcp -m multiport --dports http,https -s 51.254.57.212 -j ACCEPT
iptables -I INPUT -p tcp -m multiport --dports http,https -s 51.254.57.49 -j ACCEPT
... more rules similar to above...
iptables -A INPUT -p tcp -m multiport --dports http,https -j DROP
I have tried using
netsh advfirewall set allprofiles firewallpolicy blockinbound, allowoutbound
netsh advfirewall firewall add rule name="Core Networking (HTTP-IN)" dir=in action=allow protocol=TCP remoteip=51.254.57.212 remoteport=80
But the first command fails. I am not sure if this is the right way to do it. If someone knows any other way to achieve similar results, that would work as well. Any help will be appreciated.
Continue reading...
iptables -I INPUT -p tcp -m multiport --dports http,https -s 51.254.57.212 -j ACCEPT
iptables -I INPUT -p tcp -m multiport --dports http,https -s 51.254.57.49 -j ACCEPT
... more rules similar to above...
iptables -A INPUT -p tcp -m multiport --dports http,https -j DROP
I have tried using
netsh advfirewall set allprofiles firewallpolicy blockinbound, allowoutbound
netsh advfirewall firewall add rule name="Core Networking (HTTP-IN)" dir=in action=allow protocol=TCP remoteip=51.254.57.212 remoteport=80
But the first command fails. I am not sure if this is the right way to do it. If someone knows any other way to achieve similar results, that would work as well. Any help will be appreciated.
Continue reading...