[mdlug] Any good resources for IPTables?

Jeff Hanson jhansonxi at gmail.com
Fri Aug 26 15:26:02 EDT 2011


http://www.thegeekstuff.com/2011/01/iptables-fundamentals/

On 8/24/11, Jim Broughton <spjamesb at gmail.com> wrote:
>
>
> On 08/24/2011 09:49 AM, Robert Adkins II wrote:
>>> -----Original Message-----
>>> From: Jim Broughton [mailto:spjamesb at gmail.com]
>>> Sent: Tuesday, August 23, 2011 10:34 PM
>>> To: MDLUG's Main discussion list
>>> Cc: Robert Adkins II
>>> Subject: Re: [mdlug] Any good resources for IPTables?
>>>
>>> Are you looking to build custom chains or just work within
>>> the standard set?
>>>
>>> I have written a few small firewall scripts and I have found
>>> your best bet is the man page for iptables itself. The first
>>> thing you have to do is write down a description in English
>>> as to exactly what you wish to accomplish. As in... If an
>>> incoming packet from ip address xxx.xxx.xxx.xxx is trying to
>>> initiate a connection to port 25 should it be allowed
>>> through. Or I don't want any connections to port 22 except
>>> for these ip address or this ip range that I determine should
>>> be able to connect.
>>>
>>> I find that being able to look at examples is a great way to
>>> learn so...
>>>
>>> Perhaps if you threaten me enough I'll even send you a
>>> modified for safety version of one that has been keeping a
>>> couple of my administered sites safe for over 5 years.
>>> The firewall contains some good examples of connection
>>> logging, limiting connection hits, nat, port forwarding with
>>> and without logging and country blocking.
>>>
>> 	I want to build some custom chains.
>>
>> 	I have written out the English of what I am looking to achieve. It's
>> just the action of getting that into the proper format and the correct
>> location that I haven't discovered.
>>
>> 	-Rob
>>
>>
> Why not just go ahead an post just what your looking to do EXACTLY and
> maybe I can post a rule or two to send you on your way.
>
> Jim
>
> _______________________________________________
> mdlug mailing list
> mdlug at mdlug.org
> http://mdlug.org/mailman/listinfo/mdlug
>



More information about the mdlug mailing list