Iptables: How to allow only one ip through specific port?

security linux ubuntu iptables

How can I on my ubuntu server, in Iptables only allow one IP adress on a specific port?

Thanks


Solution 1:

One liner:

iptables -I INPUT \! --src 1.2.3.4 -m tcp -p tcp --dport 777 -j DROP  # if it's not 1.2.3.4, drop it

A more elegant solution:

iptables -N xxx # create a new chain
iptables -A xxx --src 1.2.3.4 -j ACCEPT  # allow 1.2.3.4
iptables -A xxx --src 1.2.3.5 -j ACCEPT  # allow 1.2.3.5
iptables -A xxx --src 1.2.3.6 -j ACCEPT  # allow 1.2.3.6
iptables -A xxx -j DROP  # drop everyone else
iptables -I INPUT -m tcp -p tcp --dport 777 -j xxx  # use chain xxx for packets coming to TCP port 777

Related

Setup ubuntu server to send mail()
Can someone using the same DNS server as me hijack my domains?
Ban IP address based on X number of unsuccessful login attempts?
How to use nginx to proxy to a host requiring authentication?
How to route different traffic thru different network interfaces (in Windows)
Port forwarding on Linux without iptables?
What is the correct temperature for a server room?
Linux IO monitoring per file?
Is it safe to use consumer MLC SSDs in a server?
What are the Sysadmin-Related Blogs & Mailing Lists you monitor? [closed]
Ubuntu, how to setup a new machine like an existing one
nginx: no permission to bind port 8090 but it binds to 80 and 8080