Set Up a Default Webserver and Limit Access
- These instructions are intended to address specifically the following scenario: Set Up a Default Configuration Webserver and Limit Access
- I’ll be working from a Liquid Web Self Managed CentOS 6.5 server, and I’ll be logged in as root.
yum -y install httpd
service httpd start
chkconfig httpd on
For a refresher on editing files with vim see: New User Tutorial: Overview of the Vim Text Editor
vim /var/www/html/index.html
Add the following to the text file, and then save and close the text file:
This is a test HTML file!
echo 'This is a test HTML file!' > /var/www/html/index.html
Allow SSH from a specific network, in this case 10.100.100.0/24:
iptables -A INPUT -i eth0 -p tcp -s 10.100.100.0/24 --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 22 -m state --state ESTABLISHED -j ACCEPT
Allow HTTP from a specific network, in this case 10.100.100.0/24:
iptables -A INPUT -i eth0 -p tcp -s 10.100.100.0/24 --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
Allow ping via ICMP:
iptables -A OUTPUT -p icmp --icmp-type echo-request -j ACCEPT
iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT
Set default chain policies:
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP
Save the configuration:
service iptables save
Start iptables:
service iptables start
Related Articles:
About the Author: J. Mays
As a previous contributor, JMays shares his insight with our Knowledge Base center. In our Knowledge Base, you'll be able to find how-to articles on Ubuntu, CentOS, Fedora and much more!
Our Sales and Support teams are available 24 hours by phone or e-mail to assist.
Latest Articles
In-place CentOS 7 upgrades
Read ArticleHow to use kill commands in Linux
Read ArticleChange cPanel password from WebHost Manager (WHM)
Read ArticleChange cPanel password from WebHost Manager (WHM)
Read ArticleChange the root password in WebHost Manager (WHM)
Read Article