write the iptable command for linux 1. Block any and all traffic to/from a syste

ID: 3807395 • Letter: W

Question

write the iptable command for linux

1. Block any and all traffic to/from a system. Good for quickly stopping any traffic to a system.

2. Allow traffic inbound to a DNS server on port 53 UDP from the local network (192.168.11.0/24)

3. Allow DNS server responses outbound on port 53 UDP to the local network (192.168.11.0/24)

4. Block traffic from a known bad IP address (64.90.64.90) on any port to the local system.

5. Allow common internet ports outbound from a workstation to anywhere: 80/443/53/25/110/143/67/68/123

6. Allow any traffic outbound from a workstation to an FTP server on the internet with a name ftp.internet.org

7. Why is this, by design, a conflicting rule: Allow established only NTP connections to a time server ntp1.time.org

Write the iptable command for linux

1. Block any and all traffic to/from a system. Good for quickly stopping any traffic to a system.

Sudo iptables –A FORWARD –p tcp –j DROP

2. Allow traffic inbound to a DNS server on port 53 UDP from the local network (192.168.11.0/24)

Sudo iptables –A FORWARD s- 192.168.11.0/24 –p tcp –j ACCEPT

3. Allow DNS server responses outbound on port 53 UDP to the local network (192.168.11.0/24)

Sudo iptables –A FORWARD d- 192.168.11.0/24 –p tcp –j ACCEPT

4. Block traffic from a known bad IP address (64.90.64.90) on any port to the local system.

Sudo iptables –A FORWARD s- 64.90.64.90 –p tcp –j DROP

5. Allow common internet ports outbound from a workstation to anywhere: 80/443/53/25/110/143/67/68/123

Sudo iptables –A FORWARD –p tcp –j ACCEPT

6. Allow any traffic outbound from a workstation to an FTP server on the internet with a name ftp.internet.org

SSH –L 2525: ftp.internet.org 25:<host machine>

Thank you.

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.