2354
|
1 |
|
|
2 |
==========
|
|
3 |
iptables
|
|
4 |
==========
|
|
5 |
.. contents::
|
|
6 |
:local:
|
|
7 |
|
|
8 |
View iptables rules
|
|
9 |
===================
|
|
10 |
|
|
11 |
In command format with ``-S``::
|
|
12 |
|
|
13 |
iptables -S
|
|
14 |
|
|
15 |
In table format with ``-L``::
|
|
16 |
|
|
17 |
/sbin/iptables -L
|
|
18 |
iptables -L
|
|
19 |
iptables -L INPUT
|
|
20 |
iptables -L OUTPUT
|
|
21 |
|
|
22 |
Show rule stats (#packets/#bytes) with ``-v``::
|
|
23 |
|
|
24 |
iptables -L -v
|
|
25 |
|
|
26 |
To clear stats counters::
|
|
27 |
|
|
28 |
sudo iptables -Z
|
|
29 |
sudo iptables -Z INPUT
|
|
30 |
|
|
31 |
Blocking incoming connections
|
|
32 |
=============================
|
|
33 |
|
|
34 |
For given protocol, device and port::
|
|
35 |
|
|
36 |
sudo iptables -A INPUT -i eth0 -p tcp --dport 9200 -j DROP
|
|
37 |
|
|
38 |
To delete rule::
|
|
39 |
|
|
40 |
sudo iptables -D INPUT -i eth0 -p tcp --dport 9200 -j DROP
|
|
41 |
|