Difference between revisions of "Firewall principle"
(Created page with "The firewall (FW) is a key component of your server's security. =Key points= ==Default policy== This is how you defined a default policy. Note: * You have to adjust th...") |
(→Next steps) |
||
| (52 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| + | [[Category:Linux]] | ||
The firewall (FW) is a key component of your server's security. | The firewall (FW) is a key component of your server's security. | ||
| + | You can search Internet to get all the related theory. My aim is not to explain that over here but just to give you HOW to setup a Firewall with IpTables. | ||
| + | The following codes and examples are based '''iptables''' and '''ip6tables'''. | ||
| − | |||
| − | = | + | =Principle= |
| − | This is how | + | This is how a firewall works: |
| + | [[File:FW_principle.png|none|FW principle]] | ||
| − | |||
| − | |||
| − | |||
| − | + | This is how you can use a firewall at home | work: | |
| − | |||
| − | + | [[File:FW_usage.png|none|FW usage]] | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | The firewall performs: | |
| − | + | * Basic security check | |
| − | + | * Security policy's enforcement | |
| + | * IP, port filtering | ||
| + | * Port forwarding and NAT | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | =Next steps= | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | See [[Template:Menu_content_security#Firewall]] | |
| − | |||
| − | |||
| − | |||
| − | + | =Note= | |
| − | |||
| − | |||
| − | |||
| − | + | All this knowledge is the result of years of experiments and trials. Don't hesitate to search over Internet for more advanced || simpler rules. | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | =References= | |
| − | + | * My education at Telecom Bretagne [http://www.telecom-bretagne.eu/] && Chalmers [http://www.chalmers.se/en/] | |
| − | |||
| − | + | * How to set IPv4 as default: http://bruteforce.gr/make-apt-get-use-ipv4-instead-ipv6.html | |
| − | |||
| − | + | * Working years and some co-workers help: | |
| − | + | ** Julien Rialland | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
Latest revision as of 09:34, 23 May 2015
The firewall (FW) is a key component of your server's security.
You can search Internet to get all the related theory. My aim is not to explain that over here but just to give you HOW to setup a Firewall with IpTables.
The following codes and examples are based iptables and ip6tables.
Contents
Principle
This is how a firewall works:
This is how you can use a firewall at home | work:
The firewall performs:
- Basic security check
- Security policy's enforcement
- IP, port filtering
- Port forwarding and NAT
Next steps
See Template:Menu_content_security#Firewall
Note
All this knowledge is the result of years of experiments and trials. Don't hesitate to search over Internet for more advanced || simpler rules.
References
- How to set IPv4 as default: http://bruteforce.gr/make-apt-get-use-ipv4-instead-ipv6.html
- Working years and some co-workers help:
- Julien Rialland
