Iptables

Revision as of 19:24, September 12, 2014 by Duncan.britton (Talk | contribs)

net-firewall/iptables


Source Repository:No results
http://www.netfilter.org/projects/iptables/

Summary: Linux kernel (2.4+) firewall, NAT and packet mangling tools

Use Flags

conntrack
Build against net-libs/libnetfilter_conntrack when enables the connlabel matcher
netlink
Build against libnfnetlink which enables the nfnl_osf util
nftables
Support nftables kernel interface
pcap
Build against net-libs/libpcap which enables the nfbpf_compile util

News

Drobbins

Keychain 2.8.2 Released

Keychain 2.8.2, a maintenance and bug fix release, is now available.
2015-11-16 by Drobbins
Drobbins

Unfork Tree is Live!

The "unfork" tree is now merged into the main Funtoo Linux tree, and Funtoo Linux is now using shards for core packages, x11 (including media libraries), KDE, GNOME, python and perl.
2015-10-12 by Drobbins
Drobbins

OpenSSH 7 Disables DSA Keys By Default

Please be aware of this important change to avoid getting locked out of your Funtoo server.
2015-10-07 by Drobbins
More...

Iptables

Tip

We welcome improvements to this page. To edit this page, Create a Funtoo account. Then log in and then click here to edit this page. See our editing guidelines to becoming a wiki-editing pro.

iptables is a program used to configure and manage the kernels netfilter modules.

Installation

Emerge

# emerge iptables

First Run

For some services such as sshguard & Fail2ban you need a generic running firewall. We will save a blank firewall rule set and start the firewall.

ipv4

# rc-service iptables save
# rc-service iptables start

to start upon reboot

# rc-update add iptables default

ipv6

# rc-service ip6tables save
# rc-service ip6tables start

To make the service start upon system reboot, run:

# rc-update add ip6tables default

Show firewall Rules & Status

ipv4

# iptables -L -n

ipv6

# ip6tables -L -n