Difference between revisions of "Iptables"

From CBLFS
Jump to navigationJump to search
 
(Update dependencies for 1.4.20)
 
(24 intermediate revisions by 9 users not shown)
Line 2: Line 2:
 
|-
 
|-
 
!Download Source:
 
!Download Source:
| http://www.ijg.org/files/jpegsrc.v6b.tar.gz
+
| http://iptables.org/projects/iptables/files/iptables-{{Iptables-Version}}.tar.bz2
 +
|-
 +
!Download Source:
 +
| ftp://ftp.netfilter.org/pub/iptables/iptables-{{Iptables-Version}}.tar.bz2
 
|}
 
|}
  
 
----
 
----
 +
 +
{{Package-Introduction|iptables is the userspace command line program used to configure the IPv4 and IPv6 packet filtering rule set in Linux 2.4.x or later. It is targeted towards system administrators.|http://iptables.org/projects/iptables/}}
  
 
== Dependencies ==
 
== Dependencies ==
 +
 +
=== Optional ===
 +
* [[Libnetfilter_conntrack]] (for conntrack module)
 +
  
 
== Non-Multilib ==
 
== Non-Multilib ==
Line 13: Line 22:
 
Compile the package:
 
Compile the package:
  
make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin
+
./configure --prefix=/usr --libexecdir=/lib/iptables \
 +
    --bindir=/sbin --sbindir=/sbin &&
 +
make
  
 
Install the package
 
Install the package
  
make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin install
+
make install
  
 
== Multilib ==
 
== Multilib ==
 +
 +
'''''This package does not provide any libraries so only one installation is needed.'''''
  
 
=== 32Bit ===
 
=== 32Bit ===
  
We Build the Kernel in MultiLib with 64bit. Iptables link to the kernel, and therefor cannot be compiled in 32bit. As Far as i know...
+
'''''Not Supported under a 64bit Kernel.'''''
  
 
=== N32 ===
 
=== N32 ===
  
TO DO
+
'''''Not Supported under a 64bit Kernel.'''''
  
 
=== 64Bit ===
 
=== 64Bit ===
Line 33: Line 46:
 
Compile the package:
 
Compile the package:
  
  make CC="gcc ${BUILD64}" PREFIX=/usr LIBDIR=/lib64 BINDIR=/sbin
+
  CC="gcc ${BUILD64}" ./configure --prefix=/usr \
 +
    --libexecdir=/lib64/iptables --bindir=/sbin \
 +
    --sbindir=/sbin --libdir=/usr/lib64 &&
 +
make
  
 
Install the package
 
Install the package
  
  make PREFIX=/usr LIBDIR=/lib64 BINDIR=/sbin install
+
  make install
 +
 
 +
= Contents =
 +
 
 +
Installed Programs: iptables, iptables-restore, iptables-save, ip6tables
 +
 
 +
Installed Libraries: libip6t_*.so, libipt_*.so
 +
 
 +
Installed Directory: /lib/iptables
 +
 
 +
=== Short Descriptions ===
 +
 
 +
iptables: is used to set up, maintain, and inspect the tables of IP packet filter rules in the Linux kernel.
 +
 
 +
iptables-restore: is used to restore IP Tables from data specified on STDIN. Use I/O redirection provided by your shell to read from a file.
 +
 
 +
iptables-save: is used to dump the contents of an IP Table in easily parseable format to STDOUT. Use I/O-redirection provided by your
 +
shell to write to a file.
 +
 
 +
ip6tables: is used to set up, maintain, and inspect the tables of IPv6 packet filter rules in the Linux kernel. Several different
 +
tables may be defined. Each table contains a number of built-in chains and may also contain user-defined chains.
 +
 
 +
libip*.so: library modules are various modules (implemented as dynamic libraries) which extend the core functionality of iptables.
 +
 
 +
= Boot Script =
 +
 
 +
To set up the iptables firewall at boot, install the /etc/rc.d/init.d/iptables init script included in the [[bootscripts]] package.
 +
 
 +
make install-iptables
 +
 
 +
== Misc ==
 +
 
 +
Some scripts helpful can be found at http://www.linuxfromscratch.org/blfs/view/svn/postlfs/firewall.html
 +
 
 +
[[Category:Network Utilities]]

Latest revision as of 06:21, 26 October 2013

Download Source: http://iptables.org/projects/iptables/files/iptables-1.4.20.tar.bz2
Download Source: ftp://ftp.netfilter.org/pub/iptables/iptables-1.4.20.tar.bz2

Introduction to Iptables

iptables is the userspace command line program used to configure the IPv4 and IPv6 packet filtering rule set in Linux 2.4.x or later. It is targeted towards system administrators.

Project Homepage: http://iptables.org/projects/iptables/

Dependencies

Optional


Non-Multilib

Compile the package:

./configure --prefix=/usr --libexecdir=/lib/iptables \
    --bindir=/sbin --sbindir=/sbin && 
make

Install the package

make install

Multilib

This package does not provide any libraries so only one installation is needed.

32Bit

Not Supported under a 64bit Kernel.

N32

Not Supported under a 64bit Kernel.

64Bit

Compile the package:

CC="gcc ${BUILD64}" ./configure --prefix=/usr \
    --libexecdir=/lib64/iptables --bindir=/sbin \
    --sbindir=/sbin --libdir=/usr/lib64 && 
make

Install the package

make install

Contents

Installed Programs: iptables, iptables-restore, iptables-save, ip6tables

Installed Libraries: libip6t_*.so, libipt_*.so

Installed Directory: /lib/iptables

Short Descriptions

iptables: is used to set up, maintain, and inspect the tables of IP packet filter rules in the Linux kernel.

iptables-restore: is used to restore IP Tables from data specified on STDIN. Use I/O redirection provided by your shell to read from a file.

iptables-save: is used to dump the contents of an IP Table in easily parseable format to STDOUT. Use I/O-redirection provided by your shell to write to a file.

ip6tables: is used to set up, maintain, and inspect the tables of IPv6 packet filter rules in the Linux kernel. Several different tables may be defined. Each table contains a number of built-in chains and may also contain user-defined chains.

libip*.so: library modules are various modules (implemented as dynamic libraries) which extend the core functionality of iptables.

Boot Script

To set up the iptables firewall at boot, install the /etc/rc.d/init.d/iptables init script included in the bootscripts package.

make install-iptables

Misc

Some scripts helpful can be found at http://www.linuxfromscratch.org/blfs/view/svn/postlfs/firewall.html

Retrieved from "?title=Iptables&oldid=21584"