Masithi sinemithetho yethu iptables besele sicinga, kodwa nokuba sibhala kakuhle kangakanani kwisiphelo sendlela, ngalo lonke ixesha siqala ikhompyuter ngokungathi khange siyibhengeze loo mithetho ... Oko kukuthi, ngalo lonke ixesha siqala ikhompyuter, imigaqo okanye utshintsho esinalo yenziwe e iptables balahlekile.
Ukuthintela oko, kukho izisombululo ezininzi ... ndiza kuthetha nawe apha malunga nendlela endiqinisekisa ngayo ukuba ayenzeki 🙂
Ukwazi ukuba yeyiphi imigaqo esiza kuyisebenzisa, siyibeka kwifayile (/ njl / iptables-script umzekelo) kwaye siyinika iimvume zokwenza (chmod + x /etc/iptables-script.sh), Nje ukuba kwenziwe, linyathelo elinye kuphela elishiyekileyo 😉
Ndiza kusebenzisa njengomzekelo imigaqo ye iptables Ndisebenzisa ntoni kwi ilaptop yam, Ndibashiya kwi Namathisela wethu: Cola inombolo ye-4411
1. Ndinayo loo mithetho kwaye ndiyibeka kwifayile ebizwa ngokuba: iptables-iskripthi , engena / njl /
2. Ke ndiyinika ukwenza iimvume: chmod + x / njl / iptables-script
3. Kwaye ngoku inyathelo lokugqibela, kufuneka sixelele inkqubo ukuba isebenzise iskripthi xa iqala, kuba siyifaka kwifayile /etc/rc.local. Ungayibona i-rc. Yendawo apha: Cola inombolo ye-4412
Ilungile, ayikho enye into, xa uqala iPC yakho imigaqo iya kusebenza (ewe zonke zilungile nge-100%) 😀
Kwaye ungakhathazeki… isifundo esineenkcukacha KAKHULU siza kuza (ndiyathemba ukuba siza kusigqiba kungekudala) malunga iptables, ejolise kwi-newbies, ichaze kamnandi kwaye ilula 🙂
Phendula nge quote
Enkosi kakhulu ngolwazi. Ii-IPtables sisihloko esilindileyo endihlala ndisolulela elinye ixesha. Ilinde isifundo! Ngokukodwa ndingathanda ukukwazi ukunxibelelana naphi na kwikhompyuter yam yasekhaya nge-ssh, kodwa inzima kum kuba ekhaya ndine-router kunye ne-IP ethi i-ISP yam indinike utshintsho rhoqo. Ngokusebenzisa i-noip.org ndikwazile ukwenza umamkeli, umba kukuba kubonakala kum ukuba ndibhlokile amazibuko (avela kwiRouter kwaye andazi nokuba ivela kwii-IPTable ngokunjalo). Ngapha koko, njengoko benditshilo ngaphambili, ndilinde umhlohli!
Molweni namkelekile 😀
Malunga nomzila andazi, kodwa inokuba yey ... inokuthi ivalwe apho. Ngoku, kwikhompyuter yakho, ukuba awusebenzisi nayiphi na i-firewall, iya kwanela ukufaka i-SSH kwaye uyiqale kunye ne-voila, port 22 evulekileyo yokucela iphasiwedi
Ndisebenza kwesinye isifundo, ndiyicacisa ngokwenyani kwaye ngokulula haha.
Ukubulisa kunye nombulelo ngengcaciso yakho
Enye apha elinde izinto ezintsha malunga neeptables
Isendleleni 😀
Enkosi ngokuma kwaye uphawule ^ - ^
Ewe, ezi iptables zezona zinto zinomdla endingekazazi, kodwa into encinci endiyibonileyo iphakamisa ukuba kwiminyaka eyadlulayo kuye kwafuneka ndenze isigqibo sokusebenzisa iGnu / Linux. Ndiyixabisule….
Kulungile mhlobo, ndihlala ndilindile ukuba ndisebenzise izifundiso ezilungileyo ozipapashayo. Iptable ziya kulinda wena.
Ubhuti,
Kodwa ngaba lo matshini usebenza njengommeleli okanye ngaba kukunxibelelana ne-intanethi kwaye ukhuselwe? Kukho izinto endingaziqondiyo.
Akukho nto yommeleli, yommeli kuya kufuneka uvula izibuko lenkonzo (3128 umzekelo). Sukuba nexhala, ndizakubeka isifundo esichaza iptables 😀
Kwi-Debian, enye yeendlela zokwenza ukuba umthwalo ulayishwe ngokuzenzekelayo kukufaka iptables-eqhubekayo iphakheji (kubonakala ngathi ayaziwa)
Ndiqale ukusebenzisa lo mahluko, kodwa ekugqibeleni ndikhethe ukubeka iskripthi kwi /etc/network/if-pre-up.d/ ukuze ndikwazi ukwenza ezinye izinto ezihambele phambili njengokumisela imigaqo-nkqubo ethintelayo njengokubuya xa kunokwenzeka kubekho bug imigaqo ephambili.
Ngaba ungayichaza into oyimiselayo ku-Cola uNombolo 4411? Ndiyifundile kodwa andazi ukuba yintoni ngayo heh!
(Kwimeko apho sele uthumele esinye isifundo uxolele lo mbuzo kodwa ndakhangela iptables ndaza ndafumana izifundo ezimbalwa)
Kwelinye icala, into abayikhankanyileyo nge-iptables-ezingapheliyo iphakheji isebenza njengendawo yokutshintsha into oyikhankanyileyo?
Okwangoku sele ndiphumeza le nkcukacha yakho https://blog.desdelinux.net/iptables-para-novatos-curiosos-interesados/
Molweni 😀
Ewe, eneneni ayinzima kangako.
- Kuqala ndibeka izinto eziguquguqukayo, ukuze ndigcine ukubhala oonobumba abongezelelekileyo, oku ukusuka kumgca 4 ukuya ku-18.
-Emva kwama-23 ukuya kuma-25 ndicoca yonke into endiyibhalileyo kwi-iptables, engenanto okanye eyi-100% ecocekileyo emva koko ndibhala imigaqo.
-Ngama-29 nama-30 ndifumanisa ukuba ngokungagqibekanga andizukuvumela nasiphi na isithuthi esingenayo (igalelo) kwilaptop yam, kunye nasiphi na isithuthi esidlula kuso (phambili)
-Ngama-34 nditsho ukuba lo (lo = localhost, eyilaptop uqobo) unokusebenzisa inethiwekhi.
- Ngama-38 ndikhankanya ukuba uqhagamshelo endiluqalisayo, ukuba olo nxibelelwano luvelisa iipakethi eziya kuzama ukungena kwikhompyuter, nanjengoko bendiqala ezo pakethe (kuba zaziveliswe yinto endiyenzileyo) baya kuba nakho ukungena .
-Ngoku ukusuka kwi-42 ndiqala ukuvumela unxibelelwano lweentlobo ezahlukeneyo okanye ngamazibuko ahlukeneyo. Oko kukuthi, kwiNombolo 42 ndivumela i-ping engenayo, ukusuka kuthungelwano lwam lwasekhaya (i-casa_network eguquguqukayo) ukuya kwi-IP enelaptop yam ekhaya (geass_casa_lan eguquguqukayo).
-Kuma-43 ngokufanayo, kodwa kule meko ndicacisa ukuba yi-IP yelaptop yam ekhaya, ewe, kodwa endaweni ye-LAN iyakuba nge-Wifi.
-Ukususela ngoko ukuya kuhlobo olufanayo lwemithetho ... vumela ukufikelela kumazibuko athile okanye iinkonzo endinazo kwilaptop yam, kwii-IPs ezithile okanye iinethiwekhi 🙂
Ndicebisa ukuba ufunde oku: https://blog.desdelinux.net/iptables-para-novatos-curiosos-interesados/
Ukuba emva koku usenamathandabuzo ngemigaqo ethile, nceda undibuze apha okanye kwiforum (http://foro.desdelinux.net) kwaye ndiyicacisa ngokwenyani into efunekayo 🙂
Malunga ne-iptables-ezingapheliyo andikayisebenzisi, andinakuqinisekisa ... kuyenzeka ukuba iipakethe zokucoca, ngakumbi iptables ngumcimbi obuthathaka kakhulu, kuba icandelo elikhulu lokhuseleko lwenkqubo yethu lixhomekeke koku, kwaye oku Isizathu kukuba ukuba andiqinisekanga ngento ethile, andiqinisekisi ukusebenza kwayo ngokuchanekileyo.
Ukubulisa 😀
Enkosi ngempendulo. Ewe ndifunde ikhonkco ondinike lona! Ngapha koko, de ndicime / ndiqalise ngokutsha ziyasetyenziswa Iimpawu ze-sudo -I-INPUT -i lo -j YAMKELA
Sudo iptables -I-INPUT -m state -state ESTABLISHED, RELATED -j ACCEPT (kunye neyangaphambili ekhankanywe kweso sithuba).
Emva kokufundwa okumbalwa malunga nodonga lomlilo kunye nendlela endinyanzelwa ngayo ukuba ndigcine unxibelelwano kunye nokufumana iifayile ezivela kwii-PC ezine-M $, kubonakala kufanelekile ukwenza iiptables.
Ukuba ndikopa umxholo weNcamathisela uNombolo 4411 kwincwadi yam yokubhalela, ngaba kuya kufuneka nditshintshe into okanye izakusebenza?
Yonke ikhompyuter yahlukile, kuba wonke umsebenzisi unjalo. Kuqala kufuneka uchaze ukuba zeziphi iinkonzo onazo kwikhompyuter yakho (iwebhu, njlnjl
Kwisikripthi sam (ekufuneka ndisiguqule kakade hehe) ndichaza ukuba iseva yewebhu (i-HTTP) iya kubonakala kwii-IPs ezithile, i-ping iyakuvumela wonke umntu kwinethiwekhi ezithile, njl njl njl njl.
Ukuba ufuna uncedo undibhalele i-imeyile yam, ndiya kukunceda ngovuyo: kzkggaara [@] desdelinux [.] Net
Okanye, shiya iposti kwiforum yethu kwaye abasebenzisi abaninzi baya kukunceda: http://foro.desdelinux.net
Ndibeka isihloko kwiforum, enkosi ngeempendulo. Kwaye ulungele amathandabuzo ambalwa heh! Ngapha koko ndifunda umbandela omncinci ukuze ndingasebenzisi gadalala
ukuvavanya ... ukubona ukuba uyandamkela na, ndinemibuzo emininzi endikubuza yona ...!
Molo bhuti bendifuna ukubona ukuba ngaba kukho ezinye izifundo ngaphandle kwesi sithuba endiqala ngazo kwi-iptables kwaye ndifuna ukuzenzela uxwebhu