Scribd Logo
Upload

Welcome to Scribd!

  • Configure Firewall

    Uploaded by

    Eugen T. Morar
    68 views2 pages
    This document provides instructions for setting up a basic iptables firewall on a Fedora system with two network interfaces - an external interface and an internal LAN interface. It describes installing Fedora, configuring the network interfaces, creating a firewall configuration file, adding rules to the file to enable forwarding, set default policies to drop, and allow internal traffic. The rules implement stateful filtering, NAT, and port forwarding. Running and testing the firewall completes the setup.

    Original Description:

    Configure Firewall

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides instructions for setting up a basic iptables firewall on a Fedora system with two network interfaces - an external interface and an internal LAN interface. It describes installing Fedora, configuring the network interfaces, creating a firewall configuration file, adding rules to the file to enable forwarding, set default policies to drop, and allow internal traffic. The rules implement stateful filtering, NAT, and port forwarding. Running and testing the firewall completes the setup.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    68 views2 pages

    Configure Firewall

    Uploaded by

    Eugen T. Morar
    This document provides instructions for setting up a basic iptables firewall on a Fedora system with two network interfaces - an external interface and an internal LAN interface. It describes installing Fedora, configuring the network interfaces, creating a firewall configuration file, adding rules to the file to enable forwarding, set default policies to drop, and allow internal traffic. The rules implement stateful filtering, NAT, and port forwarding. Running and testing the firewall completes the setup.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 2

    ->

    iptables setup <-

    1. install fedora 5 minutes howto 2. setting network interfaces #external interface eth0=10.10.10.2 #lan interface eth1=192.168.0.5 3. create firewall file #cd /etc #mkdir kerber #cd /etc/kerber #touch firewall 4. add following lines to firewall file #vi /etc/kerber/firewall #!/bin/sh ipt=/sbin/iptables # clean tables first echo "cleaning tables" $ipt -F $ipt -t nat -F $ipt -t mangle -F # enable ip forwarding to route across network interfaces echo "enabling ip forwarding" echo 1 > /proc/sys/net/ipv4/ip_forward # set default policies echo "set drop as default policy" $ipt -P INPUT DROP $ipt -P FORWARD DROP # setting NAT in POSTROUTING chain #if external ip is static use static nat $ipt -t nat -A POSTROUTING -o eth0 -j SNAT --to-source 10.10.10.2 # if external ip is dynamic use masquerade # $ipt -t nat -A POSTROUTING -o eth0 -j MASQUERADE # INPUT chain $ipt -A INPUT -i lo -j ACCEPT $ipt -A INPUT -i eth1 -s 192.168.0.0/24 -j ACCEPT $ipt -A INPUT -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT $ipt -A INPUT -p tcp --destination-port 22 -j ACCEPT # FORWARD chain $ipt -A FORWARD -i eth1 -s 192.168.0.0/24 -j ACCEPT $ipt -A FORWARD -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT

    www.arondmessaging.ro www.facebook.com/aiolinux

    5. give execute privileges to firewall file #chmod 755 firewall 6. run firewall #./firewall 7. see the tables #iptables L 8. test from lan with ping

    www.arondmessaging.ro www.facebook.com/aiolinux

    You might also like