Note

The Funtoo Linux project has transitioned to "Hobby Mode" and this wiki is now read-only.

Difference between revisions of "Package:Iptables"

From Funtoo
Jump to navigation Jump to search
m
 
(2 intermediate revisions by 2 users not shown)
Line 7: Line 7:
'''iptables''' is a program used to configure and manage the kernels netfilter modules.
'''iptables''' is a program used to configure and manage the kernels netfilter modules.
== Installation ==
== Installation ==
=== Kernel Settings ===
{{kernelop|title=Netfilter, set to all modules, or all y, prefer modules.|desc=
-> Networking support
    -> Networking options   
      -> Network packet filtering framework (Netfilter)
}}
=== Emerge ===
=== Emerge ===
<console>
<console>
Line 46: Line 52:
###i## ip6tables -L -n
###i## ip6tables -L -n
</console>
</console>
{{EbuildFooter}}
{{EbuildFooter}}

Latest revision as of 03:00, May 7, 2015

Iptables

   Tip

We welcome improvements to this page. To edit this page, Create a Funtoo account. Then log in and then click here to edit this page. See our editing guidelines to becoming a wiki-editing pro.

iptables is a program used to configure and manage the kernels netfilter modules.

Installation

Kernel Settings

Under Netfilter--> set to all modules--> or all y--> prefer modules.:

-> Networking support
     -> Networking options     
       -> Network packet filtering framework (Netfilter)

Emerge

root # emerge iptables

First Run

For some services such as sshguard & Fail2ban you need a generic running firewall. We will save a blank firewall rule set and start the firewall.

ipv4

root # rc-service iptables save
root # rc-service iptables start

to start upon reboot

root # rc-update add iptables default

ipv6

root # rc-service ip6tables save
root # rc-service ip6tables start

To make the service start upon system reboot, run:

root # rc-update add ip6tables default

Show firewall Rules & Status

ipv4

root # iptables -L -n

ipv6

root # ip6tables -L -n