* Netfilter and Iptables talk at AWeber
@ 2012-08-01 21:34 julien
2012-08-02 15:46 ` Jan Engelhardt
0 siblings, 1 reply; 3+ messages in thread
From: julien @ 2012-08-01 21:34 UTC (permalink / raw)
To: netfilter
Hi All,
A few weeks ago, I gave a presentation on Netfilter & Iptables at my
company. The goal was to educate developers and give them the tools to
diagnose firewall related issues.
I figured it would of interest to this list. I am also curious to get
feedback from the community, as I will be holding a Netfilter workshop at
Fosscon Philadelphia on August 11th. So if you have any comment, please reply
here, or to me directly.
http://jve.linuxwall.info/blog/index.php?post/2012/08/01/Netfilter-and-Iptables-talk-at-AWeber
Cheers,
--
Julien Vehent - http://jve.linuxwal.info
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Netfilter and Iptables talk at AWeber
2012-08-01 21:34 Netfilter and Iptables talk at AWeber julien
@ 2012-08-02 15:46 ` Jan Engelhardt
2012-08-02 16:01 ` Julien Vehent
0 siblings, 1 reply; 3+ messages in thread
From: Jan Engelhardt @ 2012-08-02 15:46 UTC (permalink / raw)
To: julien; +Cc: netfilter
On Wednesday 2012-08-01 23:34, julien wrote:
>
>I figured it would of interest to this list. I am also curious to get
>feedback from the community, as I will be holding a Netfilter workshop
>at Fosscon Philadelphia on August 11th. So if you have any comment,
>please reply here, or to me directly.
>
>http://jve.linuxwall.info/blog/index.php?post/2012/08/01/Netfilter-and-Iptables-talk-at-AWeber
For geoip blocking, there is also -m geoip from Xtables-addons.
AFW is not using -m conntrack though you used it earlier.
And a big grin for the christmas example.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Netfilter and Iptables talk at AWeber
2012-08-02 15:46 ` Jan Engelhardt
@ 2012-08-02 16:01 ` Julien Vehent
0 siblings, 0 replies; 3+ messages in thread
From: Julien Vehent @ 2012-08-02 16:01 UTC (permalink / raw)
To: netfilter
On 2012-08-02 11:46, Jan Engelhardt wrote:
> On Wednesday 2012-08-01 23:34, julien wrote:
>>
>>I figured it would of interest to this list. I am also curious to get
>>feedback from the community, as I will be holding a Netfilter workshop
>>at Fosscon Philadelphia on August 11th. So if you have any comment,
>>please reply here, or to me directly.
>>
>>http://jve.linuxwall.info/blog/index.php?post/2012/08/01/Netfilter-and-Iptables-talk-at-AWeber
>
> For geoip blocking, there is also -m geoip from Xtables-addons.
>
I was more interested in ipset than I was in geoip. The latest is on my todo
list though.
> AFW is not using -m conntrack though you used it earlier.
>
I need to make that change, and open source AFW. That's in the pipe.
>
> And a big grin for the christmas example.
There shall be no talk without cat. That's an AWeber motto :)
But I'm really considering that type of rule for some systems. Keep a ssh
relay accessible at all time, but block direct SSH on servers themselves at
night.
- Julien
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2012-08-02 16:01 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-08-01 21:34 Netfilter and Iptables talk at AWeber julien
2012-08-02 15:46 ` Jan Engelhardt
2012-08-02 16:01 ` Julien Vehent
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).