Difference between revisions of "Iptables"
m |
m |
||
Line 1: | Line 1: | ||
{| style="text-align: left; background-color: AliceBlue;" | {| style="text-align: left; background-color: AliceBlue;" | ||
+ | |- | ||
+ | !Download Source: | ||
+ | | http://iptables.org/projects/iptables/files/iptables-{{Iptables-Version}}.tar.bz2 | ||
|- | |- | ||
!Download Source: | !Download Source: |
Revision as of 00:25, 15 June 2008
Download Source: | http://iptables.org/projects/iptables/files/iptables-1.4.20.tar.bz2 |
---|---|
Download Source: | ftp://ftp.netfilter.org/pub/iptables/iptables-1.4.20.tar.bz2 |
Contents
Introduction to Iptables
iptables is the userspace command line program used to configure the Linux 2.4.x and 2.6.x IPv4 packet filtering ruleset. It is targeted towards system administrators.
Project Homepage: http://iptables.org/projects/iptables/
Dependencies
Non-Multilib
Compile the package:
make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin
Install the package
make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin install
Multilib
This package does not provide any libraries so only one installation is needed.
32Bit
Not Supported under a 64bit Kernel.
N32
Not Supported under a 64bit Kernel.
64Bit
Compile the package:
make CC="gcc ${BUILD64}" PREFIX=/usr LIBDIR=/lib64 BINDIR=/sbin
Install the package
make PREFIX=/usr LIBDIR=/lib64 BINDIR=/sbin install
Contents
Installed Programs: iptables, iptables-restore, iptables-save, ip6tables
Installed Libraries: libip6t_*.so, libipt_*.so
Installed Directory: /lib/iptables
Short Descriptions
iptables: is used to set up, maintain, and inspect the tables of IP packet filter rules in the Linux kernel.
iptables-restore: is used to restore IP Tables from data specified on STDIN. Use I/O redirection provided by your shell to read from a file.
iptables-save: is used to dump the contents of an IP Table in easily parseable format to STDOUT. Use I/O-redirection provided by your shell to write to a file.
ip6tables: is used to set up, maintain, and inspect the tables of IPv6 packet filter rules in the Linux kernel. Several different tables may be defined. Each table contains a number of built-in chains and may also contain user-defined chains.
libip*.so: library modules are various modules (implemented as dynamic libraries) which extend the core functionality of iptables.
Boot Script
To set up the iptables firewall at boot, install the /etc/rc.d/init.d/iptables init script included in the bootscripts package.
make install-iptables
Misc
Some scripts helpful can be found at http://www.linuxfromscratch.org/blfs/view/svn/postlfs/firewall.html