Comments on: Linux Iptables: HowTo Block or Open HTTP/Web Service Port 80 & 443

By: Chris D.

Chris D. — Fri, 23 Dec 2011 09:39:07 +0000

I have open port 80 as you describe here but I cannot access my site from web.
I have also configure router to forward port 80 to the pc with the apache server.
Have you any idea what could be the problem?
Thanks in advance.

By: shahadat

shahadat — Sun, 04 Dec 2011 04:06:48 +0000

hello sir,
how way bock https port number in the linux Ip table. Actually I wanted bock the browser by the https port way. like facebook.

thanks
Shahadat

By: pron

pron — Tue, 21 Sep 2010 18:38:45 +0000

hello,

can you give opposite – i need example how to configure iptables for webserver, that need access to windows local network also.

thank you in advance!

By: Yogesh

Yogesh — Sat, 31 Jul 2010 08:42:10 +0000

To block Gtalk, i want to set the restriction to this address:
216.239.37.125, 72.14.253.125, 72.14.217.189 and 209.85.137.125 on ports 20, 21, 80, 443, 5222 and 5223

How can I block these addresses to block Gtalk and Https://mail.gmail.com request in transparent proxy.I am using the same script provided by nixcraft to configure Transparent proxy.

By: Well...

Well... — Fri, 08 May 2009 05:17:52 +0000

…you all forgot to mention that conntrack has to be enabled as well. Otherwise only the first packet of the connection is let in, but the “real” data is still blocked… ;-)

By: Liju

Liju — Fri, 04 Jul 2008 15:39:22 +0000

This would be much simple and better. There is no necessary to permit the oubound traffic to be opend and can be avoided.

# Allow incoming port 80 and 443 (http/s) traffic
/sbin/iptables -A INPUT -p tcp –dport 80 -m state –state NEW -j ACCEPT
/sbin/iptables -A INPUT -p tcp –dport 443 -m state –state NEW -j ACCEPT

By: kunal

kunal — Mon, 25 Feb 2008 11:49:35 +0000

Just to add one more thing IP blocking should be done for certain period of time say 5 hrs and after unblock that IP.

By: kunal

kunal — Mon, 25 Feb 2008 11:48:27 +0000

Script to block incoming HTTP request from an IP say after 20 continue requests.

Thanks in advance
–kunal

By: Vasanth kumar

Vasanth kumar — Thu, 02 Aug 2007 21:51:01 +0000

In windows how to block https site like Gmail

By: Uttam Shrestha Rana

Uttam Shrestha Rana — Thu, 01 Mar 2007 09:33:27 +0000

How to configure Squid server with bandwidth limitation for particular network ips?
If you response with the configuration, then it will be great help me if not also, from this site i have got lots of information. Thanks. Its a greate knowledge protal.

By: Sunil Shrestha

Sunil Shrestha — Fri, 29 Dec 2006 07:46:22 +0000

grate site