Iptables

Revision as of 03:00, May 7, 2015 by Threesixes (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

net-firewall/iptables


Source Repository:Gentoo Portage Tree
Homepage

Summary: Linux kernel (2.4+) firewall, NAT and packet mangling tools

Use Flags

netlink
Build against libnfnetlink which enables the nfnl_osf util

News

Drobbins

Pre-built kernels!

Funtoo stage3's are now starting to offer pre-built kernels for ease of install. read more....
12 May 2015 by Drobbins
Drobbins

Better Experiences: Ego and Vim

Info on Funtoo's new personality tool called 'ego', and user-focused updates to vim's defaults.
27 April 2015 by Drobbins
Drobbins

How We're Keeping You At the Center of the Funtoo Universe

Read about recent developments that keep you, our users, at the forefront of our focus as Funtoo moves forward.
10 April 2015 by Drobbins
View More News...

Iptables

Tip

This is a wiki page. To edit it, Create a Funtoo account. Then log in and then click here to edit this page. See our editing guidelines to becoming a wiki-editing pro.

iptables is a program used to configure and manage the kernels netfilter modules.

Installation

Kernel Settings

Under Netfilter--> set to all modules--> or all y--> prefer modules.:

-> Networking support
     -> Networking options     
       -> Network packet filtering framework (Netfilter)

Emerge

# emerge iptables

First Run

For some services such as sshguard & Fail2ban you need a generic running firewall. We will save a blank firewall rule set and start the firewall.

ipv4

# rc-service iptables save
# rc-service iptables start

to start upon reboot

# rc-update add iptables default

ipv6

# rc-service ip6tables save
# rc-service ip6tables start

To make the service start upon system reboot, run:

# rc-update add ip6tables default

Show firewall Rules & Status

ipv4

# iptables -L -n

ipv6

# ip6tables -L -n