iptables-1.2.2指南.pdf_iptables资源-CSDN文库

iptables

5星 · 超过95%的资源需积分: 17 77 浏览量 2019-12-26 17:45:40 上传评论收藏 5.77MB PDF 举报

资源推荐

资源详情

资源评论

Ipables 指南 1.2.2

English version: Oskar Andreasson <oan@frozentux.net>

中文版: Yijun Zhu <yijunzhu@live.com

致谢

英文的感谢信我就不再翻译了.但是我还是想借这个机会感谢国内参与或者

关注 Linux 的筒子们，不管是工作需要还是兴趣使然，有了你们的努力，才有

今天 Linux 在国内的普及

另外还得感谢 1.1.19 版本的 sllscn，我首先接触的就是 1.1.19 中文版，

而且本文里面的翻译摘抄了部分内容。

Ipables 指南 1.2.2..................................................1

致谢................................................................1

目录................................................................1

译者序..............................................................7

如何阅读............................................................8

前提................................................................8

本文约定............................................................9

第一章．介绍........................................................9

为什么编写本文档................................................9

本文如何组织....................................................9

术语...........................................................10

下章预览.......................................................11

第二章．TCP/IP协议族...............................................11

TCP/IP层.......................................................12

IP作用.........................................................14

IP报文头.......................................................16

TCP作用........................................................18

TCP报文头......................................................19

UDP作用........................................................23

UDP headers....................................................23

UDP报文头......................................................23

ICMP作用.......................................................24

ICMP报文头.....................................................24

ICMP Echo Request/Reply....................................25

ICMP Destination Unreachable...............................26

源抑制（Source Quench）....................................27

重定向（Redirect）.........................................27

TTL equals 0...............................................28

Parameter problem..........................................29

Timestamp request/reply....................................29

Information request/reply..................................30

SCTP Characteristics...........................................30

SCTP作用.......................................................30

TCP/IP 目的地址驱动路由........................................30

下章预览.......................................................30

第三章 IP过滤......................................................31

介绍...............................................................31

IP过滤是什么...................................................31

IP过滤的术语和表达式...........................................32

怎么部署IP过滤.................................................34

下章预览.......................................................36

第四章网络地址转换................................................36

NAT用途以及基本术语和表达式....................................37

NAT使用说明....................................................38

理论上的NAT机器配置............................................38

搭建一台NAT服务器你需要什么................................38

NAT机器的放置..............................................39

怎么放置代理...............................................39

完成NAT的最后一步..........................................40

下章预览.......................................................41

第五章准备工作....................................................41

哪儿获取Iptables...............................................41

安装内核.......................................................41

用户空间设置...................................................45

编译用户空间应用程序.......................................45

在Red Hat7.1 上面安装iptables。 ............................47

下章预览.......................................................49

第六章遍历表和链..................................................49

概述...........................................................50

Mangle表.......................................................54

NAT表..........................................................55

RAW表..........................................................55

Filter表.......................................................56

用户自定义链...................................................56

下章预览.......................................................57

第七章状态匹配....................................................58

介绍...........................................................58

连接跟踪实体...................................................59

用户空间状态...................................................60

TCP连接........................................................61

UDP连接........................................................65

ICMP连接.......................................................66

默认连接.......................................................69

不被跟踪的连接和raw表..........................................69

复杂协议和连接跟踪.............................................70

下章预览.......................................................72

第八章保存和恢复规则集............................................73

速度方面的考虑.................................................73

恢复的不足.....................................................74

iptables-save..................................................74

iptables-restore...............................................76

下章预览.......................................................77

第九章怎么编写规则................................................77

Iptables命令的基础.............................................78

表（Tables）...................................................78

命令（Commands）...............................................79

下章预览.......................................................83

第十章 Iptables的匹配（matches）...................................83

通用匹配.......................................................83

隐含匹配（Implicit matches）...................................85

TCP匹配器（matches）.......................................86

UDP匹配器（matches）.......................................88

ICMP匹配器（matches）......................................88

SCTP匹配器（matches）......................................89

显示匹配（Explicit matches）...................................89

地址类别匹配器（match）....................................90

AH/ESP匹配器（match）......................................91

Comment match..............................................92

Connmark匹配器（match）....................................93

Contrack匹配器（match）....................................93

DSCP 匹配器（match）.......................................95

ECN匹配器（match）.........................................96

Hashlimit 匹配器（match）..................................97

Helper 匹配器（match）....................................100

IP范围匹配器（match）.....................................100

长度匹配器（match）.......................................101

限速匹配器（match）.......................................101

MAC地址匹配器（match）....................................102

Mark匹配器（match）.......................................103

多端口匹配器（match）.....................................104

属主匹配器（match）.......................................104

报文类型匹配器（match）...................................106

Realm匹配器（match）......................................106

Recent match..............................................107

状态匹配器（match）.......................................110

Tcpmss匹配器（match）.....................................111

TOS匹配...................................................111

TTL匹配...................................................112

非正常报文匹配............................................113

下章预览......................................................113

第 11 章． Iptables的动作（targets）和跳转(jumps)..................113

ACCEPT target.................................................114

CLASSIFY target...............................................114

CLUSTERIP target..............................................115

CONNMARK target...............................................117

CONNSECMARK target............................................118

DNAT target...................................................119

DROP target...................................................122

DSCP target...................................................123

ECN target....................................................124

LOG target选项................................................124

MARK target...................................................126

MASQUERADE target.............................................127

MIRROR target.................................................128

NETMAP target.................................................129

NFQUEUE target................................................129

NOTRACK target................................................130

QUEUE target..................................................130

REDIRECT target...............................................131

REJECT target.................................................131

RETURN target.................................................132

SAME target...................................................133

SECMARK target................................................133

SNAT target...................................................134

TCPMSS target.................................................135

TOS target....................................................136

TTL target....................................................138

ULOG target...................................................139

下章预览......................................................140

第十二章调试你的脚本.............................................140

调试是必须的..................................................140

Bash调试技巧..................................................141

系统调试工具..................................................144

Iptables调试..................................................145

其他调试工具..................................................147

Nmap......................................................147

Nessus....................................................149

下章预览......................................................150

第十三章 rc.firewall文件..........................................150

rc.firewall例子...............................................150

rc.firewall解释...............................................150

配置选项..................................................150

加载外部模块..............................................151

proc设置..................................................152

规则位置的优化............................................153

设置默认策略..............................................156

在filter表里面创建用户链..................................156

INPUT链...................................................160

FORWARD链.................................................162

OUTPUT链..................................................162

PREROUTING链..............................................162

POSTROUTING链.............................................163

下章预览......................................................163

十四章例子脚本...................................................164

rc.firewall.txt 脚本结果......................................164

脚本结构..................................................164

rc.firewall.txt...............................................167

rc.DMZ.firewall.txt...........................................169

rc.DHCP.firewall.txt..........................................170

rc.UTIN.firewall.txt..........................................173

rc.test-iptables.txt..........................................174

rc.flush-iptables.txt.........................................174

Limit-match.txt...............................................175

Pid-owner.txt.................................................175

Recent-match.txt..............................................175

Sid-owner.txt.................................................176

Ttl-inc.txt...................................................176

Iptables-save ruleset.........................................176

下章预览......................................................176

第十五章 iptables/netfilter图形化界面.............................176

下章预览......................................................177

第十六章商业化产品...............................................177

HPOS Firewal express series...................................177

What's next?..................................................178

下章预览......................................................178

附录A 常用命令详解................................................178

查看当前规则集的命令..........................................178

修正和清空iptables的命令......................................179

剩余289页未读，继续阅读

评论收藏

内容反馈

Prime吉吉

2021-09-16

感谢分享，非扫描版，太赞了！！！

jiangjinsai

粉丝: 4
资源: 45

iptables-1.2.2指南.pdf

iptables手册.pdf

iptables指南.pdf

iptables.pdf

Iptables.pdf

iptables详解：图文并茂理解iptables.pdf

Linux防火墙iptables学习笔记.pdf

《Linux 防火墙 IPtables 全攻略》.pdf

Iptables 指南 1.1.pdf 中文版

Iptables详细中文手册

iptables-1.1.9指南.pdf

iptables 指南1.1.19.pdf

iptables-1.4.21-35.el7.i686.rpm和iptables-services-1.4.21-35.e

iptables-1.4.7-19.el6.x86_64.rpm（for Centos6)

iptables-1.4.21-35.el7.x86_64.rpm

iptables-services-1.4.21-34.el7.x86_64.rpm

iptables-services-1.4.21-35.el7.x86_64.rpm

iptables详解 .pdf

iptables学习笔记.pdf

Iptables Tutorial 1.2.2 英文原版带书签

iptables-tutorial v1.2.2

Iptables指南.chm(可以用)

iptables和firewalld.pdf

iptables 入门篇

iptables netfilter 详解中文手册

超级详细的iptables介绍

iptables-services-1.4.21-28.el7.x86_64.rpm

iptables-1.4.7-16.el6.x86_64、iptables-devel-1.4.7-16.el6.x86_64

【rpm下载】iptables-services-1.4.21-17.el7.x86_64.rpm

最新资源