[mdlug] Any good resources for IPTables?
Robert Adkins II
radkins at impelind.com
Wed Aug 24 09:49:08 EDT 2011
> -----Original Message-----
> From: Jim Broughton [mailto:spjamesb at gmail.com]
> Sent: Tuesday, August 23, 2011 10:34 PM
> To: MDLUG's Main discussion list
> Cc: Robert Adkins II
> Subject: Re: [mdlug] Any good resources for IPTables?
>
> Are you looking to build custom chains or just work within
> the standard set?
>
> I have written a few small firewall scripts and I have found
> your best bet is the man page for iptables itself. The first
> thing you have to do is write down a description in English
> as to exactly what you wish to accomplish. As in... If an
> incoming packet from ip address xxx.xxx.xxx.xxx is trying to
> initiate a connection to port 25 should it be allowed
> through. Or I don't want any connections to port 22 except
> for these ip address or this ip range that I determine should
> be able to connect.
>
> I find that being able to look at examples is a great way to
> learn so...
>
> Perhaps if you threaten me enough I'll even send you a
> modified for safety version of one that has been keeping a
> couple of my administered sites safe for over 5 years.
> The firewall contains some good examples of connection
> logging, limiting connection hits, nat, port forwarding with
> and without logging and country blocking.
>
I want to build some custom chains.
I have written out the English of what I am looking to achieve. It's
just the action of getting that into the proper format and the correct
location that I haven't discovered.
-Rob
More information about the mdlug
mailing list