Scenario: Set Up a Default Configuration Webserver and Limit Access

Step 1: Install Apache (httpd)

yum -y install httpd
service httpd start
chkconfig httpd on


Step 2a: Add a Basic Test HTML File, Method 1

vim /var/www/html/index.html


Add the following to the text file, and then save and close the text file:


This is a test HTML file!


Step 2b: Add a Basic Test HTML File, Method 2

echo 'This is a test HTML file!' > /var/www/html/index.html


Step 3: Limit Access for Testing


Allow SSH from a specific network, in this case <reference_page_text>10.100.100.0/24:

iptables -A INPUT -i eth0 -p tcp -s 10.100.100.0/24 --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 22 -m state --state ESTABLISHED -j ACCEPT


Allow HTTP from a specific network, in this case <reference_page_text>10.100.100.0/24:

iptables -A INPUT -i eth0 -p tcp -s 10.100.100.0/24 --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT


Allow ping via ICMP:

iptables -A OUTPUT -p icmp --icmp-type echo-request -j ACCEPT
iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT


Set default chain policies:

iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP


Save the configuration:

service iptables save


Start iptables:

service iptables start

  • 1 Users Found This Useful
Was this answer helpful?

Related Articles

Linux Process Statuses

When using ps with the “u” flag (ps -u) you will see a column called STAT that displays the...

How to: Using killall to Stop Processes with Command Line

Sometimes you may find your server in a state of high load caused by out control of processes....

How to List Which Apache 2 Modules are Enabled on Fedora 21

The Apache web server is one of the most popular and powerful web servers in the world due to its...

How To Install Git on CentOS 6

Installation First, you’ll follow a simple best practice: ensuring the existing packages...

How to Disable SSLv3 for Apache and Protect Your WHM/cPanel Server from POODLE

There’s a new POODLE in town, but unfortunately it’s not the kind of pooch you want around....

Powered by WHMCompleteSolution