Iptables

Da Andreabont's Wiki.

Gestone moduli

Lista moduli caricati

cat /proc/net/ip_tables_matches

Configurazioni famose

Drop Fragments packets

iptables -A INPUT -f -j DROP

Drop all NULL packets

iptables -A INPIT -p tcp --tcp-flags ALL NONE -j DROP

Drop all INVALID packets

iptables -A INPUT -m state --state INVALID -j DROP

XMAS packets

iptables -A INPUT -p tcp --tcp-flags ALL ALL -j DROP

Permetti in ingresso pacchetti in risposta a pacchetti in uscita

iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT