waldek
/
linux_course_doc
1
0
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

Secure snmp ports iptables #2

New Issue
Closed
opened 2021-07-12 11:17:07 +02:00 by Ghost · 0 comments
Ghost commented 2021-07-12 11:17:07 +02:00
Copy Link

Secure SNMP Ports with iptables

Finally, we could ensure that no one except us can access SNMP form outside. The simplest way to achieve this is to add some firewall rules with iptables.

To ensure the iptable configuration will be loaded automatically install the following package in addition:
apt-get install iptables-persistent

This ensures that the iptable rules are automatically loaded after a reboot of the system, the rules will be loaded from a persistent stored file. To trigger an update of the currently used iptables of the system run one of the following commands:

iptables-save > /etc/iptables/rules.v4
ip6tables-save > /etc/iptables/rules.v6

Now we could add 4 new iptables entries to allow only access from our external system and block all other ones. Do not forget to replace 11.11.11.11 with your ip address or range.

iptables -A INPUT -s 11.11.11.11 -p udp -m udp --dport 161 -j ACCEPT
iptables -A INPUT -s 11.11.11.11 -p udp -m udp --dport 162 -j ACCEPT
iptables -A INPUT -p udp -m udp --dport 161 -j DROP
iptables -A INPUT -p udp -m udp --dport 162 -j DROP
**Secure SNMP Ports with iptables** Finally, we could ensure that no one except us can access SNMP form outside. The simplest way to achieve this is to add some firewall rules with iptables. To ensure the iptable configuration will be loaded automatically install the following package in addition: apt-get install iptables-persistent This ensures that the iptable rules are automatically loaded after a reboot of the system, the rules will be loaded from a persistent stored file. To trigger an update of the currently used iptables of the system run one of the following commands: iptables-save > /etc/iptables/rules.v4 ip6tables-save > /etc/iptables/rules.v6 Now we could add 4 new iptables entries to allow only access from our external system and block all other ones. Do not forget to replace 11.11.11.11 with your ip address or range. ``` iptables -A INPUT -s 11.11.11.11 -p udp -m udp --dport 161 -j ACCEPT iptables -A INPUT -s 11.11.11.11 -p udp -m udp --dport 162 -j ACCEPT iptables -A INPUT -p udp -m udp --dport 161 -j DROP iptables -A INPUT -p udp -m udp --dport 162 -j DROP ```
waldek referenced this issue from a commit 2021-07-12 11:25:37 +02:00
fixes #2
Sign in to join this conversation.
master
Branches Tags
Clear current reference
master
Clear current reference
Labels
Clear labels   
bug

Something is not working

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
question

More information is needed

  
wontfix

This won't be fixed

No Label
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: waldek/linux_course_doc#2
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?