GMEETSOFT

Basic Linux Commands

May 6th, 2009

No comments

Install json
1. Install json - This was actually trickier than expected. I assumed I would be able to install this via pear. Apparently, a PEAR Services_JSON package was developed, but it has never been accepted into the official repository. The trick instead is to use the PECL json package. This was as easy as running pecl install json and watching the compiler do its thing. When it’s done you should have a json.so file in your PHP modules directory. (Mine is /usr/lib/php/modules/.)
2. Add json.ini file to /etc/php.d/ - This file is pretty simple. Simply add extension=json.so to this file and that will enable the extension.
3. Restart Apache - Not much more to add here. Without the restart, the extension won’t be loaded.

Curl with post variables
curl -v \ –data ‘form=1&form_refresh=1&name=admin&password=onsumaye{}123&enter=Enter’ \ ‘http://domain.com

Change Hostname
hostname utils.domain.com
vi /etc/sysconfig/network

Bookmark To:

Add 'Basic Linux Commands' a Feed Me Links

Add 'Basic Linux Commands' a Google Bookmarks

Add 'Basic Linux Commands' a Bookmark.it

Author: garima Categories: Linux Tags:

IPTable Rules

May 6th, 2009

No comments

set -e

echo 0 > /proc/sys/net/ipv4/ip_forward
([ -f /var/lock/subsys/ipchains ] && /etc/init.d/ipchains stop) >/dev/null 2>&1 || true
(rmmod ipchains) >/dev/null 2>&1 || true
/sbin/iptables -F
/sbin/iptables -X
/sbin/iptables -Z
/sbin/iptables -P INPUT DROP
/sbin/iptables -A INPUT -m state –state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A INPUT -p tcp ! –syn -j REJECT –reject-with tcp-reset
/sbin/iptables -A INPUT -m state –state INVALID -j DROP
/sbin/iptables -P OUTPUT DROP
/sbin/iptables -A OUTPUT -m state –state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A OUTPUT -p tcp ! –syn -j REJECT –reject-with tcp-reset
/sbin/iptables -A OUTPUT -m state –state INVALID -j DROP
/sbin/iptables -P FORWARD DROP
/sbin/iptables -A FORWARD -m state –state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A FORWARD -p tcp ! –syn -j REJECT –reject-with tcp-reset
/sbin/iptables -A FORWARD -m state –state INVALID -j DROP
/sbin/iptables -A INPUT -i lo -j ACCEPT
/sbin/iptables -A OUTPUT -o lo -j ACCEPT
/sbin/iptables -A FORWARD -i lo -o lo -j ACCEPT
/sbin/iptables -t mangle -F
/sbin/iptables -t mangle -X
/sbin/iptables -t mangle -Z
/sbin/iptables -t mangle -P PREROUTING ACCEPT
/sbin/iptables -t mangle -P OUTPUT ACCEPT
/sbin/iptables -t mangle -P INPUT ACCEPT
/sbin/iptables -t mangle -P FORWARD ACCEPT
/sbin/iptables -t mangle -P POSTROUTING ACCEPT
/sbin/iptables -t nat -F
/sbin/iptables -t nat -X
/sbin/iptables -t nat -Z
/sbin/iptables -t nat -P PREROUTING ACCEPT
/sbin/iptables -t nat -P OUTPUT ACCEPT
/sbin/iptables -t nat -P POSTROUTING ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 10050 -s 216.65.19.138 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 10051 -s 216.65.19.138 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 8443 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 8880 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 80 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 443 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 21 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 22 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 25 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 465 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 110 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 995 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 143 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 993 -j ACCEPT

/sbin/iptables -A INPUT -p tcp –dport 106 -j DROP

/sbin/iptables -A INPUT -p tcp –dport 3306 -j DROP

/sbin/iptables -A INPUT -p tcp –dport 5432 -j DROP

/sbin/iptables -A INPUT -p tcp –dport 9008 -j DROP
/sbin/iptables -A INPUT -p tcp –dport 9080 -j DROP

/sbin/iptables -A INPUT -p udp –dport 137 -j DROP
/sbin/iptables -A INPUT -p udp –dport 138 -j DROP
/sbin/iptables -A INPUT -p tcp –dport 139 -j DROP
/sbin/iptables -A INPUT -p tcp –dport 445 -j DROP

/sbin/iptables -A INPUT -p udp –dport 1194 -j ACCEPT

/sbin/iptables -A INPUT -p udp –dport 53 -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 53 -j ACCEPT

/sbin/iptables -A INPUT -p icmp –icmp-type 8/0 -j ACCEPT

/sbin/iptables -A INPUT -j DROP

/sbin/iptables -A OUTPUT -j ACCEPT

/sbin/iptables -A FORWARD -j DROP

echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /usr/local/psa/var/modules/firewall/ip_forward.active
chmod 644 /usr/local/psa/var/modules/firewall/ip_forward.active

Bookmark To: