Manualshelf

5.5 HP StorageWorks X9720 Network Storage System Administrator Guide (AW549-96026, March 2011)

ManualsBrandsHP ManualsStorageHP X9320 10GbE 21.6TB Network Storage System
21222324252627282930
1. Determine the rule number of the http rule by running the iptables list command as follows:
# iptables -L MXSO-External-Filter
This produces output like:
Counting down the rule set, the http rule is rule number 3.
2. Having identified the rule to be updated, it can be replaced with the rule that limits requests to
those with a source address on the 16.123.8 subnet with:
# iptables -R MXSO-External-Filter 3 -p tcp -m tcp -s 16.123.8.0/24
--dport 80 -j ACCEPT
# service iptables save
3. Repeat this procedure on every server.
Restoring the firewall configuration to the factory setting
If you need to restore the firewall to the original configuration, use the following commands:
# pdsh -a cp /etc/sysconfig/iptables.mxso /etc/sysconfig/iptables
# pdsh -a service iptables restart
NOTE:
The restart action may cause interruptions on existing connections; therefore, this should be done
during a scheduled downtime.
If you had opened or restricted ports since the system was originally installed, open or restrict them
again as described in the previous sections.
Configuring the firewall26