We have one of our websites up and running on our
Nautilus infrastructure in
Stratos DC . Our security team has raised a concern that right now Apache’s port i.e
6100 is open for all since there is no firewall installed on these hosts. So we have decided to add some security layer for these hosts and after discussions and recommendations we have come up with the following requirements:
iptables and all its dependencies on each app host.
Block incoming port
6100 on all apps for everyone except for LBR host.
Make sure the rules remain, even after system reboot.
This is the task.
I did installed iptable-services ,enabled on all app servers
And done these steps on iptables -A INPUT -p tcp --dport 6100 -j REJECT
iptables-save > /etc/sysconfig/iptables
but i got these error.
can anyone please help me in understanding this task,what mistake i did? what could i have done?