help please, can not access to VPS

[htonline]

Hi all
Sorry I am a Linux newbie, I tried secure my VPS today but have some proplems .

I want disable any telnet to my server except port 80, so I put command
iptables -P INPUT DROP

I think I will put the command after
iptables -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT

but when put command iptables -P INPUT DROP, and now I only can access to VPS via Plesk, no ssh, no http for my sites, all sites down

so how can I solve this proplem
thanks for your help

[thisisit3]

heh that command blocks ALL ip traffic to the server (chain INPUT), in other words you kinda disabled your server.

telnet is a remote access tool that uses TCP port 23, so if you want to block telnet then you only need to run:

Code:

iptables -I INPUT -p tcp -m tcp --dport 23 -j DROP

You obviously don't know what you are doing, so i suggest you take extra care with iptables. Read the iptables documentation and use google.

[htonline]

what's should I do now to enable access to the server again ?
I hope can solve the issue without reinstall the server
thanks

[JPC-Jawad]

Please open a support ticket and provide your VPS details. We will login into your VPS via node and flush the iptables rules for you to enable SSH access.

[htonline]

ok, thanks

[thisisit3]

You can just reset iptables with the following command:

Code:

service iptables restart

Just make sure that the file /etc/sysconfig/iptables-config has the option IPTABLES_SAVE_ON_RESTART set to "no".

[Gwaihir]

Could he do that from the Virtuozzo panel? If not, there's no way back in for him to execute that command, is there? (I.e. no way other than support coming in via the node itself?)

[thisisit3]

Yes, its possible from the VZ panel, but not easy to do since the interface is messed up and VZ presents a custom view of the VZ_INPUT/VZ_FORWARD/VZ_etc chains, instead of the real thing. I do believe that in advanced mode its possible to modify the normal chains.