Академический Документы
Профессиональный Документы
Культура Документы
Click to edit Master subtitle style Secure Your System A handy tool for System-Administrators
4/22/12 http://chankeypathak.blogspot.com
4/22/12
GREEN-HORNE PROJECT
(An open source operating system)
What is a Firewall?
A firewall is hardware, software, or a combination of both that is used to prevent unauthorized programs or Internet users from accessing a private network and/or a single computer. 4/22/12
Inspects each individual packet of data as it arrives at either side of the firewall Inbound to or outbound from your computer Determines whether it should be 4/22/12 allowed to pass through or if it should
Firewall Rules
Allow traffic that flows automatically because it has been deemed as safe (Ex. Meeting Maker, Eudora, etc.) Block traffic that is blocked because it has been deemed dangerous to your computer
4/22/12
Stop hackers from accessing your computer Protects your personal information Blocks pop up ads and certain cookies
4/22/12
Authorizing users Limiting access for the services Filtering the packets NATing
4/22/12
Requirements
4/22/12
Implementing iptables
Using Perl and dialog I build a GUI version of the iptables. Perl For coding purpose dialog For Graphical User Interface
4/22/12
Step 1 Run the application (perl sys.xls) Step 2 Check required packages
4/22/12
4/22/12
4/22/12
4/22/12
Block Ping
iptables -A INPUT -p icmp --icmp-type echorequest -j DROP iptables -A OUTPUT -p icmp --icmp-type echo4/22/12 -j DROP reply
A dynamic approach
# iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
# iptables -P INPUT DROP # iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
4/22/12
SNAT
For static connections. iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to-source <SERVER'S_EXTERNAL_IP>
4/22/12
4/22/12
Masquerade
4/22/12
DNAT
4/22/12
Extra services
4/22/12
THANK YOU!
Any Queries?
4/22/12