iptables Block Direct IP Access to HTTPS

iptables

Marks-Man

Administrator
Joined: Mar 15, 2021
Messages: 373
Resources: 213
Points: 28
Reaction score: 96
- Convert IP Address to Hex Format

Ex: 127.0.0.1


7f.00.00.01 (0x7f000001)

Replace string : "|7d 00 00 01|"


Add the following rule to "Filter" Table:

Code:
-I INPUT -p tcp -m tcp  --dport 443 -m string --hex-string "|7d 00 00 01|" --algo kmp --to 65535 -m string --string "/" --algo bm --to 65535 -j DROP

Code:
service iptables restart

Note: Websites hosted on this IP will keep working, but anyone who tries to access IP directly will be blocked !!
 
  • Tags
    block direct ip access to https with iptables
  • Top