IPTABLES (firewall) |
iptables -t filter -L | show all chains of filtering table |
iptables -t nat -L | show all chains of nat table |
iptables -t filter -F | clear all rules from filtering table |
iptables -t nat -F | clear all rules from table nat |
iptables -t filter -X | delete any chains created by user |
iptables -t filter -A INPUT -p tcp --dport telnet -j ACCEPT | allow telnet connections to input |
iptables -t filter -A OUTPUT -p tcp --dport http -j DROP | block HTTP connections to output |
iptables -t filter -A FORWARD -p tcp --dport pop3 -j ACCEPT | allow POP3 connections to forward chain |
iptables -t filter -A INPUT -j LOG --log-prefix "DROP INPUT" | logging sulla chain di input Logging on chain input |
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE | configure a PAT (Port Address Traslation) on eth0 masking outbound packets |
iptables -t nat -A PREROUTING -d 192.168.0.1 -p tcp -m tcp --dport 22 -j DNAT --to-destination 10.0.0.2:22 | redirect packets addressed to a host to another host |
No comments:
Post a Comment