add iptable rules for the VM to accept all incoming traffic and deny all...

add iptable rules for the VM to accept all incoming traffic and deny all outgoing traffic on bro interface
parent 37bb384d
......@@ -12,7 +12,12 @@ sudo ifup eth1
echo "PATH=$PATH:/usr/local/bro/bin" >> ~/.bashrc
ETH1_IP=`ifconfig eth1 2>/dev/null|awk '/inet addr:/ {print $2}'|sed 's/addr://'`
echo "Enable promisc mode"
sudo ifconfig eth1 promisc
echo "Drop all outgoing packets in bro interface"
sudo iptables -A OUTPUT -o eth1 -j DROP
echo "Accept all incoming packets in bro interface"
sudo iptables -A INPUT -o eth1 -j ACCEPT
BRO_CFG_FILE='/usr/local/bro/etc/node.cfg'
#start creating the file conf for 4 instance
......
......@@ -12,7 +12,12 @@ sudo ifup eth1
echo "PATH=$PATH:/usr/local/bro/bin" >> ~/.bashrc
ETH1_IP=`ifconfig eth1 2>/dev/null|awk '/inet addr:/ {print $2}'|sed 's/addr://'`
echo "Enable promisc mode"
sudo ifconfig eth1 promisc
echo "Drop all outgoing packets in bro interface"
sudo iptables -A OUTPUT -o eth1 -j DROP
echo "Accept all incoming packets in bro interface"
sudo iptables -A INPUT -o eth1 -j ACCEPT
BRO_CFG_FILE='/usr/local/bro/etc/node.cfg'
mkdir -p /usr/local/bro/etc/
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment