All of lore.kernel.org
 help / color / mirror / Atom feed
* using iptables as a firewall to protect the network
       [not found] <10128ef10906302358w4702e3c3h4a49cd9f47504cd3@mail.gmail.com>
@ 2009-07-01  7:14 ` Tzury Bar Yochay
  2009-07-01  7:24   ` Oskar Berggren
                     ` (3 more replies)
  0 siblings, 4 replies; 5+ messages in thread
From: Tzury Bar Yochay @ 2009-07-01  7:14 UTC (permalink / raw)
  To: netfilter

hi,

so far I have seen people using the iptables firewall to protect their
own machine.
that is, protect the machine where the iptables runs.
I wonder if this firewall can be used the same way as firewall
appliance used that is to be placed in between the Internet link and
the LAN switch.

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: using iptables as a firewall to protect the network
  2009-07-01  7:14 ` using iptables as a firewall to protect the network Tzury Bar Yochay
@ 2009-07-01  7:24   ` Oskar Berggren
  2009-07-01  7:29   ` lists
                     ` (2 subsequent siblings)
  3 siblings, 0 replies; 5+ messages in thread
From: Oskar Berggren @ 2009-07-01  7:24 UTC (permalink / raw)
  To: Tzury Bar Yochay; +Cc: netfilter

2009/7/1 Tzury Bar Yochay <tzury.by@reguluslabs.com>:
> hi,
>
> so far I have seen people using the iptables firewall to protect their
> own machine.

You haven't looked very far then. :)

> that is, protect the machine where the iptables runs.
> I wonder if this firewall can be used the same way as firewall
> appliance used that is to be placed in between the Internet link and
> the LAN switch.

Indeed! Make sure to place filtering rules in the FORWARD chain to
make them apply for traffic not destined to the firewall itself.

/Oskar

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: using iptables as a firewall to protect the network
  2009-07-01  7:14 ` using iptables as a firewall to protect the network Tzury Bar Yochay
  2009-07-01  7:24   ` Oskar Berggren
@ 2009-07-01  7:29   ` lists
  2009-07-01  8:28   ` John Haxby
  2009-07-01  9:13   ` Tzury Bar Yochay
  3 siblings, 0 replies; 5+ messages in thread
From: lists @ 2009-07-01  7:29 UTC (permalink / raw)
  To: netfilter

On Wed, 2009-07-01 at 10:14 +0300, Tzury Bar Yochay wrote:
> hi,
> 
> so far I have seen people using the iptables firewall to protect their
> own machine.

And all else behind it.

> that is, protect the machine where the iptables runs.
> I wonder if this firewall can be used the same way as firewall
> appliance used that is to be placed in between the Internet link and
> the LAN switch.

Of course. I'm sure you can more info here:
http://iptables-tutorial.frozentux.net/iptables-tutorial.html


Rob



^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: using iptables as a firewall to protect the network
  2009-07-01  7:14 ` using iptables as a firewall to protect the network Tzury Bar Yochay
  2009-07-01  7:24   ` Oskar Berggren
  2009-07-01  7:29   ` lists
@ 2009-07-01  8:28   ` John Haxby
  2009-07-01  9:13   ` Tzury Bar Yochay
  3 siblings, 0 replies; 5+ messages in thread
From: John Haxby @ 2009-07-01  8:28 UTC (permalink / raw)
  To: Tzury Bar Yochay; +Cc: netfilter

On 01/07/09 08:14, Tzury Bar Yochay wrote:
> I wonder if this firewall can be used the same way as firewall
> appliance used that is to be placed in between the Internet link and
> the LAN switch.
>    

In the same way that, for example, Netgear and Linksys routers use 
iptables ...   I'm sure that there are other appliances that use 
iptables and I know of at least one company (cohtech.com) that provides 
what looks like an appliance solution.

jch

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: using iptables as a firewall to protect the network
  2009-07-01  7:14 ` using iptables as a firewall to protect the network Tzury Bar Yochay
                     ` (2 preceding siblings ...)
  2009-07-01  8:28   ` John Haxby
@ 2009-07-01  9:13   ` Tzury Bar Yochay
  3 siblings, 0 replies; 5+ messages in thread
From: Tzury Bar Yochay @ 2009-07-01  9:13 UTC (permalink / raw)
  To: netfilter

thank you all for all good and quick answers.

^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2009-07-01  9:13 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <10128ef10906302358w4702e3c3h4a49cd9f47504cd3@mail.gmail.com>
2009-07-01  7:14 ` using iptables as a firewall to protect the network Tzury Bar Yochay
2009-07-01  7:24   ` Oskar Berggren
2009-07-01  7:29   ` lists
2009-07-01  8:28   ` John Haxby
2009-07-01  9:13   ` Tzury Bar Yochay

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.