docker-iptables安全防护

2017-11-26
, 0 评论 0 浏览

docker-iptables 安全防护

$ cat /usr/local/sbin/iptables.sh
#!/bin/bash
ipt="/sbin/iptables"
$ipt -F DOCKER-USER
$ipt -A DOCKER-USER -j RETURN
$ipt -I DOCKER-USER -p tcp --dport 3306 -j DROP
$ipt -I DOCKER-USER -p tcp --dport 11300 -j DROP
$ipt -I DOCKER-USER -s 172.17.42.0/24 -p tcp --dport 11300 -j ACCEPT
$ipt -I DOCKER-USER -s 180.150.189.89 -p tcp --dport 11300 -j ACCEPT
$ipt -I DOCKER-USER -s 106.75.27.85 -p tcp --dport 11300 -j ACCEPT
标题:docker-iptables安全防护
作者:散宜生
地址:https://17kblog.com/articles/2017/11/26/1511670263856.html