iptables as a service is added.

EmreOvunc · Feb 17, 2020 · 5e739de · 5e739de
1 parent a6c6ac6
commit 5e739de
Showing 1 changed file with 31 additions and 0 deletions.
diff --git a/firewall-service/iptables-as-a-service b/firewall-service/iptables-as-a-service
@@ -0,0 +1,31 @@
+#nano /root/firewall.sh
+### BEGIN INIT INFO
+# Provides:          emo-firewall
+# Required-Start:    $all
+# Required-Stop:
+# Default-Start:     2 3 4 5
+# Default-Stop:
+# Short-Description: emo-firewall-config
+### END INIT INFO
+#!/bin/bash
+/sbin/iptables -F
+/sbin/iptables -P INPUT ACCEPT
+/sbin/iptables -P OUTPUT ACCEPT
+/sbin/iptables -P FORWARD ACCEPT
+/sbin/iptables -A INPUT -s 10.10.10.0/24 -p tcp --dport 22 -j DROP
+/sbin/iptables -A OUTPUT -d 10.10.10.0/24 -p tcp --sport 22 -j DROP
+/sbin/iptables-save
+exit 0
+
+#nano /etc/systemd/system/firewall-emo.service
+Description=Emo Firewall Configuration
+After=network.target
+
+[Service]
+ExecStart=/bin/bash /root/firewall.sh
+
+[Install]
+WantedBy=default.target
+
+#Enable service
+systemctl enable firewall-emo