SlideShare a Scribd company logo

IP Tables Primer - Part 1

n|u - The Open Security Community, profile picture
n|u - The Open Security Community

This document discusses Linux firewalls and iptables. It provides an overview of firewall basics, packet basics, common Linux firewalls that use iptables, and some basic iptables commands. It then demonstrates examples of iptables rules to block ping requests, reject ping requests, and drop incoming web traffic on port 80 from a specific client IP address. The document is intended as an introduction to iptables and provides demonstrations of common rule types and formats.

Technology
1 of 16
Downloaded 74 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
IPTables Getting Started Nishanth Kumar n|u Bangalore chapter member n|u / OWASP / G4H / SecurityXploded meet 22 Feb 2014
Agenda • Firewall Basics • Packet Basics • Linux Firewalls • What you can do with IPTables • What you can’t do with IP Tables • What you need to know about IP Tables • Few Examples & Demo 22 Feb 2014
Firewalls  Prevents Unauthorized access TO or FROM network.  Hardware / Software / both 22 Feb 2014
What Firewalls do ?  Filtering traffic based on POLICY  Policy determines what is acceptable traffic  Access control over traffic  Accept or Deny  May perform other duties  Logging ( Forensics , SLA )  Flagging ( Intrusion Detection )  QOS ( bandwidth management , inbound &outbound traffic priority ) 22 Feb 2014
Typical Packet looks like … 22 Feb 2014
Linux Firewalls  IP Cop  Shore wall  UFW – Uncomplicated Firewall  Open BSD & PF Most of the above firewall intern uses IPTables . 22 Feb 2014
Some basic commands  service iptables status  The above command is used to check the status of iptables  service iptables start  The above command is used to start the iptables  service iptables stop  The above command is used to stop the iptables  iptables –F or iptables --flush  The above command is used to clean-up all the default rules and existing rules. 22 Feb 2014
Ping Block - DROP iptables -A INPUT -p icmp -j DROP 22 Feb 2014
Description of rule iptables -A INPUT -p icmp -j DROP Service PROTOCOL NAME APPEND INPUT Chain JUMP PROTOCOL TARGET 22 Feb 2014
Ping Block - REJECT iptables -A INPUT -p icmp -j REJECT 22 Feb 2014
Description of rule iptables -A INPUT -p icmp -j REJECT Service PROTOCOL NAME APPEND INPUT Chain JUMP PROTOCOL TARGET 22 Feb 2014
Web Server - Client Example iptables -A INPUT -i eth0 -p tcp --dport 80 -j DROP 22 Feb 2014
Description of rule iptables -A INPUT -i eth0 -p tcp --dport 80 -j DROP Service APPEND INPUT INTERFACE INPUT Chain PROTOCOL NAME Port Number PROTOCOL JUMP INTERFACE NAME Destination Port TARGET 22 Feb 2014
Web Server - Client Example - 1 192.168.99.12 192.168.99.11 iptables -A INPUT –s 192.168.99.12 -p tcp --dport 80 -j DROP 22 Feb 2014
Description of rule iptables -A INPUT -s 192.168.99.12 -p tcp --dport 80 -j DROP Service APPEND Source PROTOCOL NAME Port Number INPUT Chain PROTOCOL JUMP IP Address of the Source Destination Port TARGET 22 Feb 2014
Continue in Part 2 Thank you 22 Feb 2014

More Related Content

PPT
Iptables
leminhvuong
 
PDF
Introduction to firewalls through Iptables
Bud Siddhisena
 
PDF
Iptables fundamentals
ram_b17
 
PPT
IP tables
aamodt
 
PPT
Iptables in linux
Mandeep Singh
 
ODP
Netfilter: Making large iptables rulesets scale
brouer
 
PDF
IPTables Primer - Part 2
Nishanth Kumar Pathi
 
PDF
Packet Filtering Using Iptables
Ahmed Mekkawy
 
Iptables
leminhvuong
 
Introduction to firewalls through Iptables
Bud Siddhisena
 
Iptables fundamentals
ram_b17
 
IP tables
aamodt
 
Iptables in linux
Mandeep Singh
 
Netfilter: Making large iptables rulesets scale
brouer
 
IPTables Primer - Part 2
Nishanth Kumar Pathi
 
Packet Filtering Using Iptables
Ahmed Mekkawy
 

What's hot (17)

PDF
Iptables Configuration
stom123
 
PPTX
Iptables the Linux Firewall
Syed fawad Gillani
 
PDF
Fcsi601 Linux Firewall Nat
narayannpp
 
PDF
Basics of firewall, ebtables, arptables and iptables
Przemysław Piotrowski
 
PPTX
Understanding iptables
Denys Haryachyy
 
PPT
IPTABLES
Tan Huynh Cong
 
PPTX
Cisco CCNA IP SLA with tracking configuration
Hamed Moghaddam
 
PPTX
Juniper JNCIA – Juniper RIP Route Configuration
Hamed Moghaddam
 
KEY
Fosscon 2012 firewall workshop
jvehent
 
DOCX
Router Commands Overview
Muhammed Niyas
 
PPT
Ip6 tables in linux
Mandeep Singh
 
PDF
03 linuxfirewall1
Iwan Threads
 
PPTX
How to convert your Linux box into Security Gateway - Part 1
n|u - The Open Security Community
 
PDF
25 most frequently used linux ip tables rules examples
chinkshady
 
PPTX
Cisco CCNA OSPF IPV6 Configuration
Hamed Moghaddam
 
PPT
In depth understanding network security
Thanawan Tuamyim
 
PPTX
Juniper JNCIA – Juniper RIP and OSPF Route Configuration
Hamed Moghaddam
 
Iptables Configuration
stom123
 
Iptables the Linux Firewall
Syed fawad Gillani
 
Fcsi601 Linux Firewall Nat
narayannpp
 
Basics of firewall, ebtables, arptables and iptables
Przemysław Piotrowski
 
Understanding iptables
Denys Haryachyy
 
IPTABLES
Tan Huynh Cong
 
Cisco CCNA IP SLA with tracking configuration
Hamed Moghaddam
 
Juniper JNCIA – Juniper RIP Route Configuration
Hamed Moghaddam
 
Fosscon 2012 firewall workshop
jvehent
 
Router Commands Overview
Muhammed Niyas
 
Ip6 tables in linux
Mandeep Singh
 
03 linuxfirewall1
Iwan Threads
 
How to convert your Linux box into Security Gateway - Part 1
n|u - The Open Security Community
 
25 most frequently used linux ip tables rules examples
chinkshady
 
Cisco CCNA OSPF IPV6 Configuration
Hamed Moghaddam
 
In depth understanding network security
Thanawan Tuamyim
 
Juniper JNCIA – Juniper RIP and OSPF Route Configuration
Hamed Moghaddam
 
Ad

Viewers also liked (9)

PDF
IP Tables Getting Started - Part 2
n|u - The Open Security Community
 
PPTX
NOS Comparison
Aditya Kushwaha
 
PPT
IP Address
Sameer Alam
 
PDF
Open vSwitch - Stateful Connection Tracking & Stateful NAT
Thomas Graf
 
PDF
Cilium - Fast IPv6 Container Networking with BPF and XDP
Thomas Graf
 
PDF
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Thomas Graf
 
PPS
Ip address
Amandeep Kaur
 
PPT
Ip address and subnetting
IGZ Software house
 
PPTX
Internet protocol (ip) ppt
Dulith Kasun
 
IP Tables Getting Started - Part 2
n|u - The Open Security Community
 
NOS Comparison
Aditya Kushwaha
 
IP Address
Sameer Alam
 
Open vSwitch - Stateful Connection Tracking & Stateful NAT
Thomas Graf
 
Cilium - Fast IPv6 Container Networking with BPF and XDP
Thomas Graf
 
Taking Security Groups to Ludicrous Speed with OVS (OpenStack Summit 2015)
Thomas Graf
 
Ip address
Amandeep Kaur
 
Ip address and subnetting
IGZ Software house
 
Internet protocol (ip) ppt
Dulith Kasun
 
Ad

Similar to IP Tables Primer - Part 1 (20)

PPT
Linux Firewall - NullCon Chennai Presentation
Vinoth Sivasubramanan
 
PDF
Iptablesrocks
qwer_asdf
 
DOCX
How to Install iptable on Debian 12.docx
Green Webpage
 
PDF
Linux firewall
chanmyaeag
 
PPTX
Firewall
khalid abdelazim
 
PPTX
introduction of iptables in linux
Nouman Baloch
 
PDF
Preventing Traffic with Spoofed Source IP address
Bangladesh Network Operators Group
 
DOCX
25 most frequently used linux ip tables rules examples
Teja Bheemanapally
 
DOCX
25 most frequently used linux ip tables rules examples
Teja Bheemanapally
 
PDF
Aruba OS 7.3 Command Line Interface Reference Guide
Aruba, a Hewlett Packard Enterprise company
 
PDF
SRE NL MeetUp - eBPF.pdf
SiteReliabilityEngin
 
PDF
iptable casestudy by sans.pdf
Admin621695
 
PDF
Experience of Implementing IPTV in an ISP Network by Thong Hawk Yen
MyNOG
 
PPTX
Implementing Telematic Services
Ivan Ortega
 
DOCX
Creating a firewall in UBUNTU
Mumbai University
 
PPTX
Week 4 Linux Firewalls 1_868612559.pptx
botlhaleoageng
 
PDF
Summit 16: The Hitchhiker/Hacker's Guide to NFV Benchmarking
OPNFV
 
PDF
X-Device Service Discovery
TekObserver
 
PPT
Integrating Active Networking and Commercial-Grade Routing Platforms
Tal Lavian Ph.D.
 
PDF
Intro to shorewall
minh pham
 
Linux Firewall - NullCon Chennai Presentation
Vinoth Sivasubramanan
 
Iptablesrocks
qwer_asdf
 
How to Install iptable on Debian 12.docx
Green Webpage
 
Linux firewall
chanmyaeag
 
Firewall
khalid abdelazim
 
introduction of iptables in linux
Nouman Baloch
 
Preventing Traffic with Spoofed Source IP address
Bangladesh Network Operators Group
 
25 most frequently used linux ip tables rules examples
Teja Bheemanapally
 
25 most frequently used linux ip tables rules examples
Teja Bheemanapally
 
Aruba OS 7.3 Command Line Interface Reference Guide
Aruba, a Hewlett Packard Enterprise company
 
SRE NL MeetUp - eBPF.pdf
SiteReliabilityEngin
 
iptable casestudy by sans.pdf
Admin621695
 
Experience of Implementing IPTV in an ISP Network by Thong Hawk Yen
MyNOG
 
Implementing Telematic Services
Ivan Ortega
 
Creating a firewall in UBUNTU
Mumbai University
 
Week 4 Linux Firewalls 1_868612559.pptx
botlhaleoageng
 
Summit 16: The Hitchhiker/Hacker's Guide to NFV Benchmarking
OPNFV
 
X-Device Service Discovery
TekObserver
 
Integrating Active Networking and Commercial-Grade Routing Platforms
Tal Lavian Ph.D.
 
Intro to shorewall
minh pham
 

More from n|u - The Open Security Community (20)

PDF
Hardware security testing 101 (Null - Delhi Chapter)
n|u - The Open Security Community
 
PDF
Osint primer
n|u - The Open Security Community
 
PPTX
SSRF exploit the trust relationship
n|u - The Open Security Community
 
PPTX
Nmap basics
n|u - The Open Security Community
 
PDF
Metasploit primary
n|u - The Open Security Community
 
PDF
Api security-testing
n|u - The Open Security Community
 
PDF
Introduction to TLS 1.3
n|u - The Open Security Community
 
PDF
Gibson 101 -quick_introduction_to_hacking_mainframes_in_2020_null_infosec_gir...
n|u - The Open Security Community
 
PDF
Talking About SSRF,CRLF
n|u - The Open Security Community
 
PPTX
Building active directory lab for red teaming
n|u - The Open Security Community
 
PPTX
Owning a company through their logs
n|u - The Open Security Community
 
PPTX
Introduction to shodan
n|u - The Open Security Community
 
PDF
Cloud security
n|u - The Open Security Community
 
PDF
Detecting persistence in windows
n|u - The Open Security Community
 
PPTX
Frida - Objection Tool Usage
n|u - The Open Security Community
 
PDF
OSQuery - Monitoring System Process
n|u - The Open Security Community
 
PDF
DevSecOps Jenkins Pipeline -Security
n|u - The Open Security Community
 
PDF
Extensible markup language attacks
n|u - The Open Security Community
 
PPTX
Linux for hackers
n|u - The Open Security Community
 
PDF
Android Pentesting
n|u - The Open Security Community
 
Hardware security testing 101 (Null - Delhi Chapter)
n|u - The Open Security Community
 
Osint primer
n|u - The Open Security Community
 
SSRF exploit the trust relationship
n|u - The Open Security Community
 
Nmap basics
n|u - The Open Security Community
 
Metasploit primary
n|u - The Open Security Community
 
Api security-testing
n|u - The Open Security Community
 
Introduction to TLS 1.3
n|u - The Open Security Community
 
Gibson 101 -quick_introduction_to_hacking_mainframes_in_2020_null_infosec_gir...
n|u - The Open Security Community
 
Talking About SSRF,CRLF
n|u - The Open Security Community
 
Building active directory lab for red teaming
n|u - The Open Security Community
 
Owning a company through their logs
n|u - The Open Security Community
 
Introduction to shodan
n|u - The Open Security Community
 
Cloud security
n|u - The Open Security Community
 
Detecting persistence in windows
n|u - The Open Security Community
 
Frida - Objection Tool Usage
n|u - The Open Security Community
 
OSQuery - Monitoring System Process
n|u - The Open Security Community
 
DevSecOps Jenkins Pipeline -Security
n|u - The Open Security Community
 
Extensible markup language attacks
n|u - The Open Security Community
 
Linux for hackers
n|u - The Open Security Community
 
Android Pentesting
n|u - The Open Security Community
 

Recently uploaded (20)

PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Teaching material agriculture food technology
LiaRayya
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 

IP Tables Primer - Part 1

  • 1. IPTables Getting Started Nishanth Kumar n|u Bangalore chapter member n|u / OWASP / G4H / SecurityXploded meet 22 Feb 2014
  • 2. Agenda • Firewall Basics • Packet Basics • Linux Firewalls • What you can do with IPTables • What you can’t do with IP Tables • What you need to know about IP Tables • Few Examples & Demo 22 Feb 2014
  • 3. Firewalls  Prevents Unauthorized access TO or FROM network.  Hardware / Software / both 22 Feb 2014
  • 4. What Firewalls do ?  Filtering traffic based on POLICY  Policy determines what is acceptable traffic  Access control over traffic  Accept or Deny  May perform other duties  Logging ( Forensics , SLA )  Flagging ( Intrusion Detection )  QOS ( bandwidth management , inbound &outbound traffic priority ) 22 Feb 2014
  • 5. Typical Packet looks like … 22 Feb 2014
  • 6. Linux Firewalls  IP Cop  Shore wall  UFW – Uncomplicated Firewall  Open BSD & PF Most of the above firewall intern uses IPTables . 22 Feb 2014
  • 7. Some basic commands  service iptables status  The above command is used to check the status of iptables  service iptables start  The above command is used to start the iptables  service iptables stop  The above command is used to stop the iptables  iptables –F or iptables --flush  The above command is used to clean-up all the default rules and existing rules. 22 Feb 2014
  • 8. Ping Block - DROP iptables -A INPUT -p icmp -j DROP 22 Feb 2014
  • 9. Description of rule iptables -A INPUT -p icmp -j DROP Service PROTOCOL NAME APPEND INPUT Chain JUMP PROTOCOL TARGET 22 Feb 2014
  • 10. Ping Block - REJECT iptables -A INPUT -p icmp -j REJECT 22 Feb 2014
  • 11. Description of rule iptables -A INPUT -p icmp -j REJECT Service PROTOCOL NAME APPEND INPUT Chain JUMP PROTOCOL TARGET 22 Feb 2014
  • 12. Web Server - Client Example iptables -A INPUT -i eth0 -p tcp --dport 80 -j DROP 22 Feb 2014
  • 13. Description of rule iptables -A INPUT -i eth0 -p tcp --dport 80 -j DROP Service APPEND INPUT INTERFACE INPUT Chain PROTOCOL NAME Port Number PROTOCOL JUMP INTERFACE NAME Destination Port TARGET 22 Feb 2014
  • 14. Web Server - Client Example - 1 192.168.99.12 192.168.99.11 iptables -A INPUT –s 192.168.99.12 -p tcp --dport 80 -j DROP 22 Feb 2014
  • 15. Description of rule iptables -A INPUT -s 192.168.99.12 -p tcp --dport 80 -j DROP Service APPEND Source PROTOCOL NAME Port Number INPUT Chain PROTOCOL JUMP IP Address of the Source Destination Port TARGET 22 Feb 2014
  • 16. Continue in Part 2 Thank you 22 Feb 2014