ACCEPT – defines the requests and types of packets which will be accepted by a firewall
DROP – specifies the requests and packets which will be rejected by a firewall
Create a firewall rule
To configure a firewall rule:
1. Go to your SolarCloud On-Demand control panels' Virtual Machines menu.
2. Click the label of the machine to which you want to configure a firewall rule.
3. Click the Networking -> Firewall tab.
4. On the page that appears set the following:
- Choose the network interface.
- Specify if the rule defines requests that should be accepted or dropped.
- Set the IP address for which this rule is active.
- Leave the empty field to apply this rule to all IPs
- Enter hyphen-separated IPs to apply the rule to an IP range (e.g. 192.168.1.1-192.168.1.10)
- Enter the IPs with slash to apply the rule to CIDR (e.g. 192.168.1.1/24)
- Set the port for which this rule is effective.
- Leave the empty field to apply the rule to all ports
- Enter colon-separated ports to apply the rule to a port range (e.g. 1024:1028)
- Enter comma-separated ports to apply the rule to the list of ports (e.g. 80,443,21)
- Choose the protocol (TCP or UDP).
Example:
The eth1 ACCEPT 120.158.111.21 22 TCP firewall rule means that the eth1 network interface will accept all the requests and packets addressed from a 120.158.111.21 IP using TCP protocol on a 22 port.
The eth2 DROP 120.158.111.21 22 UDP firewall rule means that the etj2 network interface will reject all the requests and packets running from a 120.158.111.21 IP using TCP protocol on a 22 port.
ÂÂ
Because some rules can override each other, it is important to set the order in which they are processed. Use the up/down arrows next to a rule to set priority.