C2 SERVER FW RULE

C2 SERVER WHITELIST

#this must be configured after the nginx whitelist configuration
root@oco:~$ BROWSER > AZURE/AWS > Settings > Networking > Add inbound port rule
 #this creates an inbound rule where only the Red Team operators can access the C2 server
 #the red team operators are in the 49.36.41.230 IP while the c2 is in 20.66.23.137
 Rule: SSH
  Priority: 300
  Port: 22
  Protocol: TCP
  Source: 49.36.41.230
  Destination: Any
  Action: Allow

 #this creates an inbound rule where any traffic originating from the nginx redirector will be
 #able to access the c2 server
 Rule: AllowTagHTTPInbound
  Priority: 310
  Port: 80
  Protocol: TCP
  Source: AzureFrontDoorBackend/AWSCDNELB
  Destination: Any
  Action: Allow
   
 #accept the traffic coming from nginx to mythic c2
 Rule: AllowCIDRBlockHTTPInbound
  Priority: 330
  Port: 80
  Protocol: TCP
  Source: 20.66.87.234     //this is the IP of the nginx VM
  Destination: Any
  Action: Allow
   
 Rule: AllowVnetInbound
  Priority: 6500
  Port: Any
  Protocol: Any
  Source: VirtualNetwork
  Destination: Any
  Action: Allow
  
 Rule: AllowAzureLoadBalancerInbound
  Priority: 6501
  Port: Any
  Protocol: Any
  Source: AzureLoadBalancer
  Destination: Any
  Action: Allow
  
 Rule: DenyAllInbound
  Priority: 65500
  Port: Any
  Protocol: Any
  Source: Any
  Destination: Any
  Action: Deny
PreviousNGINX FW RULE NextDIRECTORY REDIRECTION (OPSEC)
Last updated 4 months ago