Documente Academic
Documente Profesional
Documente Cultură
PRESENTED BY
Iptables
2
ABSTRACT
3
AIM AND OBJECTIVES
To study Linux open source operation system
To know network security threats
To study the concepts of firewall
4
LINUX FIREWALL
5
FIREWALL
referto a piece of hardware or software
prevent some communications forbidden defined
by network policy
can be distinguished
6
FIREWALL BASIC STRUCTURE
7
TYPES OF NETWORK FIREWALL
8
BENEFITS OF FIREWALL
Firewall are effective to
Protect the local system
Protect the network based security
Provide secured and controlled access to Internet
Provide restricted and controlled access from the Internet to
local servers
Highly customizable and versatile
Robust and reliable
9
TOOLS FOR WRITING RULES
10
IPTABLES
192.168.1.0/24
Network
eth1
192.168.1.1
255.255.255.0 eth0
10.10.1.1
255.255.255.252
Switch Internet
Linux firewall
12
CONFIGURING FIREWALL WITH IPTABLES
Restrict the users’ access other than web access:
#iptables -A FORWARD -i eth1 -s 192.168.1.0/24 -m tcp -p tcp --dport 80 -
mstate --state NEW -j ACCEPT
13
CONFIGURING FIREWALL WITH IPTABLES
(CON’T)
SNAT WEB server
iptables –t nat –A POSTROUTING- -ieth1 –d 10.0.1.1 –p tcp –dport 80 –j SNAT
– to 192.168.1.3
SNATMail server
#Iptables-t nat -A POSTROUTING -i eth1 -d 10.10.1.1 -m tcp -p tcp --dport 80
-j SNAT --to-destination 192.168.1.2
15
16