Programmer Group

The article is reproduced for easy sorting and induction. The source address is: https://cloud.tencent.com/developer/article/1722230 When a Linux server is attacked, sometimes there are several main IP addresses. If you can reject these IP attacks, it will greatly reduce the pressure on the server, and maybe the server will return to normal. ...

Catalog One: What is a firewall 1. What is a firewall 2. Firewall Classification   3. The principle of firewall 4. What filter network does the firewall pass through?     5. What is a table 6. What is a chain 7. Scenarios for using chains 8. Relationship between tables and chains 9. iptables syntax format 10. ...

Samba is a free software that implements the SMB protocol on Linux and UNIX systems and consists of server and client programs.SMB (Server Messages Block) is a communication protocol for sharing files and printers on a local area network. It provides file and printer sharing services between different computers in th ...

brief introduction Squid is a high performance proxy cache server that supports FTP, gopher, HTTPS, and HTTP protocols.Unlike general proxy caching software, Squid handles all client requests in a separate, non-modular, I/O-driven processAgent modeForward proxy allows users to use squid proxy server to access the internet. It also enables simi ...

**rockermq cluster building Cluster workflow Start NameServer, listen to the port after NameServer gets up, wait for Broker, Producer and Consumer to connect, which is equivalent to a routing control center. Broker starts, maintains a long connection with all nameservers, and sends heartbeat packets re ...

Opening Through the previous article Istio Sidecar injection principle It can be found that the Sidecar application has been injected at the same time when the application is submitted to the kubernate deployment. If you are careful, you can also find that in addition to the application of istio proxy, there is also an Init Containers of istio ...

concept In short, Sidecar injection adds the configuration of additional containers to the Pod template. This refers to the Pod in which the Envoy container is applied. Currently, the containers required by Istio service grid are: Istio init is used to set iptables rules so that inbound / outbound traffic passes through the Sidecar agent. Initi ...

I. iptables 1) Check the status of the firewall The firewall service name in centos7 is firewalld, no longer iptables [root@localhost ~]# systemctl status firewalld firewalld.service - firewalld - dynamic firewall daemon Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled) Active: active (running) since One 2017-12 ...

Alibaba cloud server, operating system CentOS 7.0, installs nginx. 1. First, set alicloud's security group settings and open the 80 port limit: Open Alibaba cloud official website > console > ECS > Security Group > security group rules: Select any rule column, click "clone", select "HTTP(80)" for "protoco ...

iptables rule persistence Set firewall rules iptables -A INPUT -s 1.1.1.1/32 -p tcp -m tcp --dport 22 -j DROP iptables -A INPUT -s 2.2.2.2/32 -p tcp -m tcp --dport 22 -j DROP iptables -A INPUT -s 3.3.3.3/32 -p tcp -m tcp --dport 22 -j DROP iptables -A INPUT -s 4.4.4.4/32 -p tcp -m tcp --dport 22 -j DROP Save firewall rules service iptabl ...