Need a Crash Course in iptables (redhat)

Omega_Shadow · 05-Dec-2006, 11:44 PM #1

I need to open a port in our firewall so it will accept an incoming port for a program my boss wishes to use. The Firewall box is running redhat (no gui of course) and I think the actual firewall is iptables, though it might be something else (the last IT guy failed to leave any documentation on it) iptable looks to be configured but I also found something called aconda installed too.

This is my first time dealing with a firewall using iptables (or console only for that mater).

I need a quick and dirty crash course on iptable or aconda if that is a firewall also. Squashman, if you got any more of those handy-save-my-arse links now would be the time

lotuseclat79 · 05:47 PM

OS,

Try this link for tutorial on iptables: http://iptables-tutorial.frozentux.n...-tutorial.html

Here's a complementary Easy Firewall Generator for IPTables to that tutorial at:
http://easyfwgen.morizot.net/gen/

Here's another Iptable Firewall guide to provide a basic knowledge about iptables and then help to create a firewall script. (Ubuntu oriented, but quite good) at:
http://doc.gwos.org/index.php/IptablesFirewall

-- Tom

Omega_Shadow · 06-Dec-2006, 05:48 PM #3

That would take a week an a half to read and understand! Still going to read it so I can understand it after all this is done but I got to have this working by this weekend for him!

Anyone know, in english, how to open port XXXX to IP xxx.xxx.x.x in iptables?

fenderfreek · 06-Dec-2006, 08:44 PM #4

I found one that's fairly newbie-friendly here - see if this is more to your liking.

http://www.cse.msu.edu/~minutsil/iptables.html

Omega_Shadow · 06-Dec-2006, 10:20 PM #5

Yeah, thats more my speed

Thanx

lotuseclat79 · 07-Dec-2006, 11:33 AM #6

If you haven't figured out how to open up a port yet, here's how:

Assuming you have created a TRUSTED chain: Note: if something doen't work open the port corresponding to the service you want to open (look in /etc/service to know the port number).

To open a new port just add a new rule for the TRUSTED chain like this for tcp :
Code:

iptables -A TRUSTED -i eth0 -p tcp -m tcp --sport port_number -j ACCEPT

or for udp :
Code:

iptables -A TRUSTED -i eth0 -p udp -m udp --sport port_number -j ACCEPT

Quick and dirty implementation is to substitute INPUT for TRUSTED in above examples, but I do not know how secure that would be.

Reference: HOWTO: Set a custom firewall (iptables) and Tips at:
http://www.ubuntuforums.org/showthread.php?t=159661

Ignore that the info is on an Ubuntu forum, it should work on any Linux iptables setup. Note: read the webpage first if you don't understand anything, and then use the reference links provided at the bottom of the webpage:
http://yolinux.com/TUTORIALS/LinuxTu...rkGateway.html

-- Tom

Omega_Shadow · 07-Dec-2006, 02:58 PM #7

Yep, I got it set up already, but I will be reading all these links so I can make a more secure firewall. And hopefully in the future I can figure out how to allow for some sort of VNC between here and home so I can make last minute changes without having to walk all the way back here.

Thanx for all the info guys

Tag Cloud
access acer asus bios bsod computer crash desktop driver drivers error ethernet excel freeze gaming hard drive hardware hdmi internet laptop malware memory modem monitor motherboard mouse network printer problem ram registry repair router slow software sound trojan ubuntu 11.10 uninstall usb video virus vista wifi windows windows 7 windows 7 32 bit windows 7 64 bit windows xp wireless

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Search
Search for:

Find the solution to yourcomputer problem!

Find the solution to your
computer problem!