<div>greetings.</div><div>my state:</div><div>if I write the following in the browser: <a href="https://xxx.xxx.xxx.xxx:8006/">https://xxx.xxx.xxx.xxx:8006/</a></div><div>the system does not show me the administrative interface</div>
<div><br></div><div>when I make a tunnel reverse</div><div>ssh-L 1234:<a href="http://127.0.0.1:8006">127.0.0.1:8006</a> root@xxx.xxx.xxx.xxx</div><div>I can connect to the browser <a href="http://127.0.0.1:1234/">http://127.0.0.1:1234/</a></div>
<div><br></div><div>Now apply the following iptables rules:</div><div><br></div><div><div>################################</div><div>#!/bin/sh</div><div>IPT=/sbin/iptables</div><div><br></div><div>$IPT -F;</div><div>$IPT -F INPUT;</div>
<div>$IPT -F OUTPUT;</div><div>$IPT -F FORWARD;</div><div>$IPT -X;</div><div><br></div><div>$IPT -A INPUT -i lo -j ACCEPT</div><div>$IPT -A OUTPUT -o lo -j ACCEPT</div><div><br></div><div>$IPT -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT</div>
<div>$IPT -A INPUT -p tcp --dport 22 -j ACCEPT #ssh</div><div>#$IPT -A INPUT -p tcp --dport 53 -j ACCEPT #DNS</div><div>#$IPT -A INPUT -p udp --dport 53 -j ACCEPT #DNS</div><div>#$IPT -A INPUT -p tcp --dport 80 -j ACCEPT #http</div>
<div>#$IPT -A INPUT -p tcp --dport 110 -j ACCEPT #POP3</div><div>$IPT -A INPUT -p tcp --dport 443 -j ACCEPT # https</div><div>$IPT -A INPUT -p tcp --dport 8006 -j ACCEPT #interface</div><div><br></div><div>$IPT -A INPUT -p tcp --dport 5900 -j ACCEPT #VNC </div>
<div>$IPT -A INPUT -p tcp --dport 5901 -j ACCEPT #VNC</div><div>$IPT -A INPUT -p tcp --dport 5002 -j ACCEPT #VNC</div><div>$IPT -A INPUT -p tcp --dport 5003 -j ACCEPT #VNC</div><div><br></div><div>$IPT -A INPUT -j REJECT</div>
<div>######################################</div></div><div><br></div><div><br></div><div>also secure server</div><div>* Locked root access via ssh</div><div>* Installing fail2ban</div><div>* Creating a user "userxyz" ssh access</div>
<div>* I added "userxyz" to "sudo"</div><div><br></div><div>I can not do the reverse tunnel ... : (</div><div><br></div><div>write: ssh-L 1234:<a href="http://127.0.0.1:8006">127.0.0.1:8006</a> userxyz@xxx.xxx.xxx.xxx</div>
<div>answer: Received disconnect from xxx.xxx.xxx.xxx: 2: Too many authentication failures for userxzy</div><div><br></div><div>I resolve this?</div><div>Thanks for your time!</div><div>I am new to the topic: S</div><br><br>
Díaz Luis<br>Analista Programador Facultad de Odontología UC<br>User Linux 532223<br>