Iptables best practises
Results 1 to 3 of 3

Thread: Iptables best practises

  1. #1
    Junior Member
    Join Date
    Dec 2005
    Posts
    2

    Iptables best practises

    Hello everyone.

    Im a sys admin in learning and im currently working with iptables and trying to learn it on a deeper level.
    Im just wondering if ya all with some more experience could help me with some general suggestions as to best standard practises when setting up iptables from scratch.
    So far i'v been making a rule to allow all outgoing traffic (is there any major issues with this? I trust my users) and i'v been making one rule at the end of the INPUT chain to block all incoming and then i'v been adding the ports /protocolls i want to permit above it in the chain.

    Basically thats as far as i'v gotten. I'v been reading alot of recommendations about blocking SYN packets to 1/s to prevent SYN flood attacks.

    Generally, what rules do you begin with setting up when you got a blank system and setting up iptables?

  2. #2
    Senior Member
    Join Date
    Apr 2004
    Posts
    1,130
    try googleing this --> Oskar Andreasson
    here is a tut from him with some samples and advices:
    http://iptables-tutorial.frozentux.n...-tutorial.html
    i hope it helps you
    Meu sítio

    FORMAT C: Yes ...Yes??? ...Nooooo!!! ^C ^C ^C ^C ^C
    If I die before I sleep, I pray the Lord my soul to encrypt.
    If I die before I wake, I pray the Lord my soul to brake.

  3. #3
    The Prancing Pirate
    Join Date
    Jul 2004
    Posts
    548
    Also try searching the tutorials on this site - here's a good one by str34m3r: click. That should be more than enough to get you started

    Cheers,

    -jk
    TAZForum <---- click

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides