{"id":11,"date":"2008-02-13T04:05:17","date_gmt":"2008-02-12T19:05:17","guid":{"rendered":"https:\/\/hiro7216.mydns.jp\/blog\/?p=11"},"modified":"2024-01-30T23:41:12","modified_gmt":"2024-01-30T14:41:12","slug":"%e3%82%a2%e3%82%bf%e3%83%83%e3%82%af%e3%81%ae%e5%a4%9a%e3%81%84%e5%9b%bd%e3%81%8b%e3%82%89%e3%81%aeip%e3%82%92%e5%bc%be%e3%81%8f%ef%bc%81","status":"publish","type":"post","link":"https:\/\/hiro7216.mydns.jp\/blog\/?p=11","title":{"rendered":"\u30a2\u30bf\u30c3\u30af\u306e\u591a\u3044\u56fd\u304b\u3089\u306eIP\u3092\u5f3e\u304f\uff01"},"content":{"rendered":"\n<p>iptables\u3082\u7121\u4e8b\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u304c\u7d42\u4e86\u3057\u305f\u306e\u3067IP\u306e\u30d5\u30a3\u30eb\u30bf\u30fc\u3092\u884c\u3063\u3066\u307f\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u30a2\u30bf\u30c3\u30af\u306e\u591a\u3044\u56fd\u306eIP\u3068\u8a2d\u5b9a\u3092\u307e\u3068\u3081\u305f\u30b5\u30a4\u30c8\u304c\u3042\u308b\u306e\u3067\u53c2\u8003\u306b\u3055\u305b\u3066\u3082\u3089\u3044\u307e\u3057\u305f\u3002<\/p>\n\n\n\n<p>\u97d3\u56fd IP \u30a2\u30c9\u30ec\u30b9\u304b\u3089\u306e\u30d1\u30b1\u30c3\u30c8\u3092\u906e\u65ad\u3059\u308b<br><span style=\"color: #ff0000;\">\u203b\u65e2\u306b\u30ea\u30f3\u30af\u5148\u306e\u30b5\u30a4\u30c8\u306f\u306a\u304f\u306a\u3063\u3066\u3044\u308b\u3088\u3046\u3067\u3059<\/span><\/p>\n\n\n\n<p>\u3053\u306e\u8a2d\u5b9a\u3092\u884c\u3048\u3070\u30d5\u30a3\u30eb\u30bf\u30ea\u30f3\u30b0\u51fa\u6765\u308b\u306e\u3067\u3059\u304c\u518d\u8d77\u52d5\u3059\u308b\u3068filter\u306f\u30af\u30ea\u30a2\u3055\u308c\u3066\u3057\u307e\u3044\u307e\u3059\u3002<br>\u305d\u3053\u3067\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u4f5c\u6210\u3057\u3066rc.local\u3067\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u52d5\u304b\u3059\u3088\u3046\u306b\u3057\u307e\u3057\u305f\u3002<\/p>\n\n\n\n<p>\u30b9\u30af\u30ea\u30d7\u30c8\u7528\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30fc\u306e\u4f5c\u6210\u3002<br>mkdir \/etc\/krfilter<\/p>\n\n\n\n<p>filter\u30b9\u30af\u30ea\u30d7\u30c8\u3092DL\u3057\u3066<br>\/etc\/krfilter\u306e\u4e0b\u306bALL2.sh\u3068\u3057\u3066\u4fdd\u5b58\u3057\u307e\u3057\u305f\u3002<br><span style=\"color: #ff0000;\">\u203b\u65e2\u306b\u30ea\u30f3\u30af\u5148\u306e\u30b5\u30a4\u30c8\u306f\u306a\u304f\u306a\u3063\u3066\u3044\u308b\u3088\u3046\u3067\u3059<\/span><br>\u6b21\u306b\u30d5\u30a3\u30eb\u30bf\u30fc\u4f5c\u6210\u3068\u53cd\u6620\u306e\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002<br>vi krfilter.sh\u3067\u65b0\u898f\u4f5c\u6210<\/p>\n\n\n\n<p>\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d<\/p>\n\n\n\n<p># krfilter init script for iptables<\/p>\n\n\n\n<p>echo &#8220;initialize start krfilter.&#8221;<\/p>\n\n\n\n<p># make krfilter<br>iptables -N KRFILTER<br>iptables -N KRFILTERED<\/p>\n\n\n\n<p># add filter<br>sh \/etc\/krfilter\/ALL2.sh<\/p>\n\n\n\n<p># set accept<br>iptables -A KRFILTER -j ACCEPT<\/p>\n\n\n\n<p># set reject<br># comment output log<br>#iptables -A KRFILTERED -j LOG &#8211;log-prefix &#8220;Rej-TCP &#8220;<br>iptables -A KRFILTERED -j DROP<\/p>\n\n\n\n<p># initialize<br>iptables -A INPUT -p tcp -m state &#8211;state NEW -j KRFILTER<\/p>\n\n\n\n<p>echo &#8220;krfilter initialized.&#8221;<\/p>\n\n\n\n<p>\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d\uff0d<\/p>\n\n\n\n<p>\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u4fdd\u5b58\u3057\u3066\/etc\/rc.local\u306b\u3053\u306e\u30b9\u30af\u30ea\u30d7\u30c8\u306e\u5b9f\u884c\u3092\u767b\u9332\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p>vi \/etc\/rc.local<\/p>\n\n\n\n<p>exit 0 \u3088\u308a\u3082\u524d\u306b<\/p>\n\n\n\n<p>sh \/etc\/krfilter\/krfilter.sh<\/p>\n\n\n\n<p>\u306e\u4e00\u884c\u3092\u8ffd\u52a0\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u3053\u308c\u3067\u8d77\u52d5\u6642\u306b\u30d5\u30a3\u30eb\u30bf\u30fc\u304c\u9069\u7528\u3055\u308c\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3059\u3002<br>\uff08rc.local\u306b\u66f8\u304f\u3068\u4ed6\u306e\u30c7\u30fc\u30e2\u30f3\u8d77\u52d5\u5f8c\u306b\u9069\u7528\u3055\u308c\u307e\u3059\u306e\u3067\u30c7\u30fc\u30e2\u30f3\u3088\u308a\u524d\u306b\u30d5\u30a3\u30eb\u30bf\u30fc\u3057\u305f\u3044\u5834\u5408\u306f\u305d\u308c\u306a\u308a\u306e\u5834\u6240\u3067\u8d77\u52d5\u3055\u305b\u3066\u4e0b\u3055\u3044\uff09<\/p>\n\n\n\n<p>\u3053\u308c\u3067\u30d5\u30a3\u30eb\u30bf\u30fc\u306e\u8a2d\u7f6e\u306f\u5b8c\u4e86\u3067\u3059\u3002<br>\u518d\u8d77\u52d5\u3057\u3066\u5b9f\u969b\u306b\u9069\u7528\u3055\u308c\u305f\u304b\u78ba\u8a8d\u3057\u3066\u307f\u307e\u3057\u3087\u3046\u3002<\/p>\n\n\n\n<p>iptables -L<\/p>\n\n\n\n<p>\u30ba\u30e9\u30ba\u30e9\u3068\u8a2d\u5b9a\u5185\u5bb9\u304c\u51fa\u3066\u304d\u307e\u3059\u306e\u3067CTRL+C\u3067\u9069\u5f53\u306a\u3068\u3053\u308d\u3067\u6b62\u3081\u3066\u3082OK\u3067\u3059\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>iptables\u3082\u7121\u4e8b\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u304c\u7d42\u4e86\u3057\u305f\u306e\u3067IP\u306e\u30d5\u30a3\u30eb\u30bf\u30fc\u3092\u884c\u3063\u3066\u307f\u307e\u3059\u3002 \u30a2\u30bf\u30c3\u30af\u306e\u591a\u3044\u56fd\u306eIP\u3068\u8a2d\u5b9a\u3092\u307e\u3068\u3081\u305f\u30b5\u30a4\u30c8\u304c\u3042\u308b\u306e\u3067\u53c2\u8003\u306b\u3055\u305b\u3066\u3082\u3089\u3044\u307e\u3057\u305f\u3002 \u97d3\u56fd IP \u30a2\u30c9\u30ec\u30b9\u304b\u3089\u306e\u30d1\u30b1\u30c3\u30c8\u3092\u906e\u65ad\u3059\u308b\u203b\u65e2\u306b\u30ea\u30f3\u30af &hellip; <a href=\"https:\/\/hiro7216.mydns.jp\/blog\/?p=11\" class=\"more-link\">\u7d9a\u304d\u3092\u8aad\u3080 <span class=\"screen-reader-text\">\u30a2\u30bf\u30c3\u30af\u306e\u591a\u3044\u56fd\u304b\u3089\u306eIP\u3092\u5f3e\u304f\uff01<\/span> <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,287],"tags":[166],"class_list":["post-11","post","type-post","status-publish","format-standard","hentry","category-linkstation","category-nas","tag-linkstation"],"_links":{"self":[{"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=\/wp\/v2\/posts\/11","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=11"}],"version-history":[{"count":0,"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=\/wp\/v2\/posts\/11\/revisions"}],"wp:attachment":[{"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=11"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=11"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hiro7216.mydns.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=11"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}