1.編輯 /etc/shorewall/shorewall.conf
BLACKLIST 選項
2.編輯 /etc/shorewall/blrules
#ACTION SOURCE DEST PROTO DPORT
WHITELIST net:1.2.3.4 all
DROP net all udp 1023:1033,1434,5948,23773
DROP all net udp 1023:1033
DROP net all tcp 57,1433,1434,2401
DROP net:1.2.3.4 all
DROP net:1.2.23.4 all tcp 25
沒有留言:
張貼留言