Firewalls: summary Filters a Widely available in routers, linux Stateful filters a Maintains connection state
Firewalls: Summary ◼ Filters ❑ Widely available in routers, linux ◼ Stateful filters ❑ Maintains connection state 16
Iptables Linux Firewall
Iptables -- Linux Firewall
IPtables Objectives a to learn the basics of iptables Contents a Start and stop iPtables a Checking IPtables status a Input and output chain 口 Pre and post routing a forward of address and port a firewall standard rules a Lading/Unloading kernel driver modules a Connection tracking modules Practicals 口 working with iptables Summary
IPtables ◼ Objectives ❑ to learn the basics of iptables ◼ Contents ❑ Start and stop IPtables ❑ Checking IPtables status ❑ Input and Output chain ❑ Pre and Post routing ❑ Forward of address and port ❑ Firewall standard rules ❑ Lading/Unloading kernel driver modules ❑ Connection tracking modules ◼ Practicals ❑ working with iptables ◼ Summary
What Is iptables? Stateful packet inspection a The firewall can keep track of each connection passing through it, This is an important feature in the support of active and vol Filtering packets based on a mac address Pv4/IPv6 Very important in WLANs and similar enviroments Filtering packets based the values of the flags in the TCP header a Helpful in preventing attacks using malformed packets and in restricting access Network address translation and Port translating NAt/NAPt Building dmz and more flexible nat enviroments to increase secu ity
What Is iptables? ◼ Stateful packet inspection. ❑ The firewall can keep track of each connection passing through it, This is an important feature in the support of active FTP and VoIP. ◼ Filtering packets based on a MAC address IPv4 / IPv6 Very important in WLAN’s and similar enviroments. ◼ Filtering packets based the values of the flags in the TCP header ❑ Helpful in preventing attacks using malformed packets and in restricting access. ◼ Network address translation and Port translating NAT/NAPT Building DMZ and more flexible NAT enviroments to increase security
What is Iptables? Source and stateful routing and failover functions a Route traffic more efficient and faster than reqular IP routers System logging of network activities a Provides the option of adjusting the level of detail of the reporting a rate limiting feature a Helps to block some types of denial of service(Dos) attacks acket manipulation(mangling)like altering the ToS/dsCp/Ecn bits of the ipheader Mark and classify packets dependent on rules. First step in QoS
What is Iptables? ◼ Source and stateful routing and failover functions ❑ Route traffic more efficient and faster than regular IP routers. ◼ System logging of network activities ❑ Provides the option of adjusting the level of detail of the reporting ◼ A rate limiting feature ❑ Helps to block some types of denial of service (DoS) attacks. ◼ Packet manipulation (mangling) like altering the TOS/DSCP/ECN bits of the IP header ❑ Mark and classify packets dependent on rules. First step in QoS