Blocking all traffic except DDoS Protected IP

For extra measure of security it is best to prevent access to your server from any other IP except your assigned Remote DDoS Protection IP to block all DDoS attack (Denial of Service: Definition) traffic that might hit it directly.

Open port 22 for your use.

First you want to leave port 22 open so you can access your own server.

iptables -A INPUT -p tcp -i eth0 -s [YOUROWNIP] --dport 22 -j ACCEPT

Drop all other connections

Drop all connections to port 80, 443 or other port except from DDoS IP.

/sbin/iptables -A INPUT -p tcp -i eth0 -s ! [YOURDDOSIP] --dport 80 -j DROP

/sbin/iptables -A INPUT -p tcp -i eth0 -s ! [YOURDDOSIP] --dport 443 -j DROP

/sbin/iptables -A INPUT -p tcp -i eth0 -s ! [YOURDDOSIP] --dport 6554 -j DROP 

To Edit IP Tables configuration:

vi /etc/sysconfig/iptables

Save file and restart iptables using service command.

Note: the port 22 ssh allow must be before any deny entries.

  • 58 Users Found This Useful
Was this answer helpful?

Related Articles

Whitelist your DDoS Protected IP on your Server

Its important to whitelist your remote DDoS protection IP on your server so that it does not...

DDoS Protection for Minecraft - Banning User IP Addresses

DDoS Protection for Minecraft - Banning User IP Addresses Our Remote DDoS protection provides a...

Minecraft Servers - Handling single IP for all users.

Since the remote DDoS protection (read: What is a Distributed Denial of Service Attack?) funnels...

Constant disconnections could be due to OpenJDK

If you are using JavaPipe remote DDoS protection to mitigate DDoS against your minecraft server...

Experiencing Lag?

The problem with lag is that it can be caused by a LOT of things. Rarely is it caused by the...