There's no such thing as a stupid question, but they're the easiest to answer.
JoinTour
Login
 
Tag Cloud
acer black screen blue screen blue screen of death boot computer connection crash css dell display driver drivers error firefox firefox 3 game hard drive internet internet explorer itunes laptop lcd linux malware monitor network networking outlook outlook 2003 outlook express partition password printer problem problems ram router security slow software sound sprtcmd.exe trojan usb virus vista windows windows xp wireless
UNIX/Linux
Search
Search in:
 
Advanced Search
Tech Support Guy Forums > Operating Systems > UNIX/Linux >
Ubuntu iptables HowTo


HELLO AND WELCOME! Before you can post your question, you'll have to register -- it's completely free! Click here to join today! We highly recommend that you print a copy of our Guide for New Members. Enjoy!

Closed Thread
 
Thread Tools
lotuseclat79's Avatar
Distinguished Member with 10,547 posts.
  
Join Date: Sep 2003
Location: -71.45091, 42.27841
25-Feb-2008, 10:02 AM #1
Ubuntu iptables HowTo
Iptables is a firewall, installed by default on all official Ubuntu distributions (Ubuntu, Kubuntu, Xubuntu). When you install Ubuntu, iptables is there, but it allows all traffic by default.

There is a wealth of information available about iptables, but much of it is fairly complex, and if you want to do a few basic things, this How To is for you.

The HowTo covers the folllowing topics:
Contents
1. Basic iptables howto
2. Basic Commands
3. Basic Iptables Options
4. Allowing Established Sessions
5. Allowing Incoming Traffic on Specific Ports
6. Blocking Traffic
7. Editing iptables
8. Logging
9. Saving iptables
10. Configuration on startup
11. Configuration on Startup for NetworkManager
12. Tips
1. If you manually edit iptables on a regular basis
2. Using iptables-save/restore to test rules
3. More detailed Logging
4. Disabling the firewall
13. Easy configuration via GUI (Firestarter related)
14. Further Information
15. Credits

Also, here is another great Ubuntu beginners iptables setup for beginners:
HOWTO: Set a custom firewall (iptables) and Tips [Beginners edition].

-- Tom
__________________
The independence created by philosophical insight is - in my opinion - the mark of distinction between a mere artisan or specialist and a real seeker after truth. - Einstein wrote in 1944.

Some say knowledge is power, I say knowledge without action is powerless. - lotuseclat79

Don't confuse action with movement. - Hemingway to Gardner

Imagination is more important than knowledge. - Einstein
Last edited by lotuseclat79 : 25-Feb-2008 10:32 AM.
lotuseclat79's Avatar
Distinguished Member with 10,547 posts.
  
Join Date: Sep 2003
Location: -71.45091, 42.27841
28-Feb-2008, 09:39 AM #2
Note: In the second link in post #1, i.e. HOWTO: Set a custom firewall (iptables) and Tips [Beginners edition], there are 20 web pages of comments (192 posts) in reply to that HowTo.

It has been a while since I implemented it on my computer, and the script has been corrected as of January 31, 2008, so, I you, like me, have implemented it before that date, then it is time to update your script.

At the bottom of the HowTo instructions, there is some information on installing nmap and nmapfe. I strongly urge anyone implementing this script to test it out using nmapfe and specify the scan to check all of the ports, as I did.

Further, there are entries in the script to allow amule and bittorent - I have those statements in the script commented out with a '#' character as the first character of those lines, since I do not use either amule or bittorent.

Lastly, if you have learned about iptables and how to minimally protect your Ubuntu (or other Linux distribution with this iptables firewall), and you need to install more advanced rules and learn more about using iptables, then there is a link at the top of the HowTo webpage that links to another more advanced HowTo by the same author. Check it out and the comments on the webpages that follow it (2 webpages, 13 comments at last count).

One further note: If you use dial-up 56k connection to the Internet through an ISP, you need to change the references to eth0 (ethernet) to ppp0 for the dial-up protocol interface on all statements with eth0 for all instances.

-- Tom
__________________
The independence created by philosophical insight is - in my opinion - the mark of distinction between a mere artisan or specialist and a real seeker after truth. - Einstein wrote in 1944.

Some say knowledge is power, I say knowledge without action is powerless. - lotuseclat79

Don't confuse action with movement. - Hemingway to Gardner

Imagination is more important than knowledge. - Einstein
Last edited by lotuseclat79 : 28-Feb-2008 09:50 AM.
Closed Thread

THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

« Previous Thread | UNIX/Linux | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
WELCOME TO TECH SUPPORT GUY! Are you looking for the solution to your computer problem? Join our site today to ask your question -- for free! Our site is run completely by volunteers who help people like you solve computer problems. See our Welcome Guide to get started.



Thread Tools


Related Sites: 56k Dial-Up | Tech Gift Ideas | Mobile TechGuy | Advertise on TSG
Contact Us - HelpOnThe.Net - Archive - Terms of Service - Top
You Are Using:
Server ID
Advertisements do not imply our endorsement of that product or service.
All times are GMT -4. The time now is 05:06 AM.
Copyright © 1996 - 2008 TechGuy, Inc. All rights reserved.
Powered by vBulletin, Copyright © 2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.1.0
Powered by Cermak Technologies, Inc.