Server Fault

Questions tagged [iptables]

Ask Question

iptables is the userspace command line program used to configure the Linux 2.4.x and 2.6.x IPv4 packet filtering ruleset. It is targeted towards system administrators. Please, when asking a question about iptables, add the output from the following command: iptables -L -v -n

5,735 questions
Newest
Active
Bountied
Unanswered
Filter by
Sorted by
Tagged with
0
votes
0answers
9 views

iptables - reject windows connection attempts, without the wait?

I have decided to cut off most access to the internet from my home network, since telemetry is just too popular now and I no longer trust most software to be on the internet. So I have an iptables ...
-2
votes
1answer
19 views

Iptables forward webinterface of E3531

I have a Raspberrypi with an E3531 UMTS Stick connecting to the Internet. Since the Rpi is headless I wanted to make the Webinterface of the Stick available over the IP of the Rpi. The Stick builds a ...
0
votes
0answers
16 views

Issue with Netfilter NETMAP for “return” traffic not going thru

I have an issue when trying to use iptables NETMAP on a firewall Packets coming from a src LAN thru an IPSec tunnel must be 1:1 NAT to a local LAN, thus I have created a simple NETMAP rule iptables -t ...
0
votes
0answers
16 views

Connecting to a remote host via tailscale VPN?

I'm trying to route some traffic through a VPN network via tailscale rather than direct connection to the host. My setup is: Ubuntu Client with tailscale VPN (Now called C) Ubuntu Server with ...
1
vote
1answer
25 views

Ubuntu 18.04: Communication to server on localhost stops working after setting a port forwarding rule

I have a Ubuntu 18.04 device with two network interfaces, ethernet and USB LTE modem. There is IP camera connected directly to the ethernet port and it has address 192.168.0.90. I use the LTE ...
0
votes
1answer
23 views

Connect multiple clients to a special purpose TCP server that accepts single connection at a time

I have a server and clients A and B. Clients A & B are identical. As of now, client A connects to the server over a persistent long living TCP connection. Currently if I want to do maintenance ...
0
votes
1answer
53 views

What is an efficient alternative to iptables for bulk usage?

Suppose I have a list of thousands of ip addresses to block. Right now I know how to iterate through the list and for each one run: iptables -A INPUT -s XX.XX.XX.XX -j DROP But this means I will have ...
0
votes
1answer
24 views

How to write iptables rule to accept certain ICMPv6 types and codes?

I currently have the following: ip6tables -A INPUT -p ipv6-icmp --icmpv6-type 1 -j ACCEPT ip6tables -A INPUT -p ipv6-icmp --icmpv6-type 2 -j ACCEPT ip6tables -A INPUT -p ipv6-icmp --icmpv6-type 3 -j ...
0
votes
2answers
54 views

How can I log all network connection activity with iptables?

I'd like to log connections, connection attempts on a single machine. This should include IP, Port and timestamp. This is really just for analytical / security purposes. How can I achieve this? There ...
0
votes
0answers
24 views

How to Keep The Original IP Address After Being Forwarded? [duplicate]

I have a question, Is there any way to forward the IP Address without hide the real IP Address ?? Ok, let me tell you about my problem.. I have 3 ip address.. As a honeypot, I used the Kippo, it has ...
0
votes
0answers
24 views

How to use iptables to link two vlans

I have two networks, one being the main, with a network card eth1 (found on an Ubuntu Server 18.04 configured to be a router) and internal IP address 192.168.5.1 (with is the gateway) and another ...
0
votes
0answers
31 views

Issue with HAProxy 2.0.7 setup with tproxy on Centos-7

Hi I am Trying to setup HAProxy with transparent proxy on Centos-7 machine. Env: ( 2-http server ==>> HAProxy server ==>> ClientVM ) I have configured http servers with normal haproxy and ...
0
votes
1answer
76 views

The IP Address of The Attacker is not Detected in the Honeypot After Being Forwarded

I have a problem with my project. My project is how to deflect the attacker to the honeypot. I tried using the IPTables to forward any IP Address that want to access the protected network to the ...
0
votes
0answers
44 views

Dockerized Wireguard with killswitch doesn't allow the local access of a service sharing the network

I got two containers linuxserver/wireguard and X on Ubuntu (server) 20.04. X got a WebUI on port q that I would like to access via my local network (192.168.178.0/24 - fritzbox). They are configured ...
1
vote
1answer
22 views

Do AWS Security Groups and rules and Network ACLs REJECT or DROP traffic?

AWS Security groups and AWS VPC Network ACLs are 2 solutions for controlling traffic in VPCs. When rules in either deny an IP packet, do they REJECT or DROP (in the iptables sense)? That is: are ...

15 30 50 per page
1
2 3 4 5
ā€¦
383