Get help with installing and configuring Blox SBC
firewall problem
|
volga629 Posts: 15
8/16/2016
|
Hello Everyone,
I applied in web ui to allow access for management ports like 22,80,443 be available from LAN subnet only, but rules not applied to actual iptables.
I suggest you look into ipset with iptables mix. That will allow you have match more dynamic firewall.
Please advise how to fix it.
1650 119929 INPUT_FILTER tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
2280 271027 INPUT_FILTER tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
4 216 INPUT_FILTER tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
|
|
|
0
link
|
|
bloxsupport1 Posts: 232
8/22/2016
|
Hello Volga,
We will revert back to you with the fix.
|
|
|
0
link
|
|
varadhan Administrator Posts: 69
8/22/2016
|
volga629 wrote:
Hello Everyone,
I applied in web ui to allow access for management ports like 22,80,443 be available from LAN subnet only, but rules not applied to actual iptables.
I suggest you look into ipset with iptables mix. That will allow you have match more dynamic firewall.
Please advise how to fix it.
1650 119929 INPUT_FILTER tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
2280 271027 INPUT_FILTER tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
4 216 INPUT_FILTER tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
Please send screenshot of device access page to our mail id support@blox.org
|
|
|
0
link
|
|
volga629 Posts: 15
9/1/2016
|
Done. Should be in support inbox
|
|
|
0
link
|
|
varadhan Administrator Posts: 69
9/5/2016
|
volga629 wrote:
Done. Should be in support inbox
We haven't received any mails.
You need to disable the default device access, which allow all ports by default.
You can configure it manually creating separate rule to create specific rule set.
|
|
|
0
link
|