|
|
|
Before the IP tables are completely configured, it should have an inactive table defined. This is less critical as there is very little running in the operating system by the time the inactive table is loaded. The following set of commands provides you with a suitable inactive table.
iptables -F INPUT iptables -F OUTPUT iptables -F FORWARD iptables -A INPUT -j DROP iptables -A OUTPUT -j DROP iptables -A FORWARD -j DROP /etc/init.d/iptables save inactive
Once the last command is entered, the HSM should respond with the following message.
Savinging iptables ruleset: save “inactive” with counters
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |