I want to share with you my iptables rules,
i instaled CSF on centos 7 because i need to stop some DDoS attacks,
CSF its an firewall that a friend suggest to me and was i searching for,
i just want to allow connections from some countries, anything else DROP.
From the CSF documentation when i allow some countries it will ACCEPT only these conections,
indeed i need to disable this firewall when i need download something from US by example.
Thats says its blocking conections, because i only want to accept central and south america conections,
but when someone attack it means other thing. Ill leave you guys a link on GitHub with my IPTables rules.
If you can review it and tell me what its wrong ill thanks you a lot. Im very newbie on networking.
https://gist.githubusercontent.com/anon ... tfile1.txt
There is something that i cant understand very well.
Code: Select all
4 228 47245 ACCEPT udp -- !lo * 213.186.33.99 0.0.0.0/0 udp spt:53
5 22M 15G LOCALINPUT all -- !lo * 0.0.0.0/0 0.0.0.0/0
6 36914 4286K ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
7 46 5112 INVALID tcp -- !lo * 0.0.0.0/0 0.0.0.0/0