[mdlug] Any good resources for IPTables?
Jim Broughton
spjamesb at gmail.com
Wed Aug 24 15:09:50 EDT 2011
On 08/24/2011 09:49 AM, Robert Adkins II wrote:
>> -----Original Message-----
>> From: Jim Broughton [mailto:spjamesb at gmail.com]
>> Sent: Tuesday, August 23, 2011 10:34 PM
>> To: MDLUG's Main discussion list
>> Cc: Robert Adkins II
>> Subject: Re: [mdlug] Any good resources for IPTables?
>>
>> Are you looking to build custom chains or just work within
>> the standard set?
>>
>> I have written a few small firewall scripts and I have found
>> your best bet is the man page for iptables itself. The first
>> thing you have to do is write down a description in English
>> as to exactly what you wish to accomplish. As in... If an
>> incoming packet from ip address xxx.xxx.xxx.xxx is trying to
>> initiate a connection to port 25 should it be allowed
>> through. Or I don't want any connections to port 22 except
>> for these ip address or this ip range that I determine should
>> be able to connect.
>>
>> I find that being able to look at examples is a great way to
>> learn so...
>>
>> Perhaps if you threaten me enough I'll even send you a
>> modified for safety version of one that has been keeping a
>> couple of my administered sites safe for over 5 years.
>> The firewall contains some good examples of connection
>> logging, limiting connection hits, nat, port forwarding with
>> and without logging and country blocking.
>>
> I want to build some custom chains.
>
> I have written out the English of what I am looking to achieve. It's
> just the action of getting that into the proper format and the correct
> location that I haven't discovered.
>
> -Rob
>
>
Why not just go ahead an post just what your looking to do EXACTLY and
maybe I can post a rule or two to send you on your way.
Jim
More information about the mdlug
mailing list