tachtler:centos_8_-_iptables
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende ÜberarbeitungLetzte ÜberarbeitungBeide Seiten der Revision | ||
tachtler:centos_8_-_iptables [2019/12/28 07:59] – [Installation: iptables] klaus | tachtler:centos_8_-_iptables [2019/12/28 08:39] – [Erster Start] klaus | ||
---|---|---|---|
Zeile 609: | Zeile 609: | ||
/ | / | ||
</ | </ | ||
+ | |||
+ | ===== Dienst/ | ||
+ | |||
+ | Um '' | ||
+ | < | ||
+ | # systemctl enable iptables.service | ||
+ | Created symlink / | ||
+ | </ | ||
+ | und | ||
+ | < | ||
+ | # systemctl enable ip6tables.service | ||
+ | Created symlink / | ||
+ | </ | ||
+ | |||
+ | Eine Überprüfung, | ||
+ | < | ||
+ | # systemctl list-unit-files --type=service | grep -E ^ip' | ||
+ | ip6tables.service | ||
+ | iptables.service | ||
+ | </ | ||
+ | bzw. | ||
+ | < | ||
+ | # systemctl is-enabled iptables.service | ||
+ | enabled | ||
+ | </ | ||
+ | und | ||
+ | < | ||
+ | # systemctl is-enabled ip6tables.service | ||
+ | enabled | ||
+ | </ | ||
+ | |||
+ | ===== Erster Start ===== | ||
+ | |||
+ | ==== iptables ==== | ||
+ | |||
+ | Nachfolgender Befehl fürt den ersten Start des Dienstes/ | ||
+ | < | ||
+ | # systemctl start iptables.service | ||
+ | </ | ||
+ | |||
+ | Mit nachfolgendem Befehl kann ünberprüft werden, ob der Dienst/ | ||
+ | < | ||
+ | # systemctl status iptables.service | ||
+ | ● iptables.service - IPv4 firewall with iptables | ||
+ | | ||
+ | | ||
+ | Process: 9573 ExecStart=/ | ||
+ | Main PID: 9573 (code=exited, | ||
+ | |||
+ | Dec 28 08:06:00 localhost.localdomain systemd[1]: Starting IPv4 firewall with i> | ||
+ | Dec 28 08:06:00 localhost.localdomain iptables.init[9573]: | ||
+ | Dec 28 08:06:00 localhost.localdomain systemd[1]: Started IPv4 firewall with ip> | ||
+ | </ | ||
+ | |||
+ | Nachfolgender Befehl überprüft, | ||
+ | < | ||
+ | # iptables -nvL | ||
+ | Chain INPUT (policy ACCEPT 0 packets, 0 bytes) | ||
+ | pkts bytes target | ||
+ | 148 10796 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 REJECT | ||
+ | |||
+ | Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) | ||
+ | pkts bytes target | ||
+ | 0 0 REJECT | ||
+ | |||
+ | Chain OUTPUT (policy ACCEPT 84 packets, 10872 bytes) | ||
+ | pkts bytes target | ||
+ | </ | ||
+ | |||
+ | ==== ip6tables ==== | ||
+ | |||
+ | Nachfolgender Befehl fürt den ersten Start des Dienstes/ | ||
+ | < | ||
+ | # systemctl start ip6tables.service | ||
+ | </ | ||
+ | |||
+ | Mit nachfolgendem Befehl kann ünberprüft werden, ob der Dienst/ | ||
+ | < | ||
+ | # systemctl status ip6tables.service | ||
+ | ● ip6tables.service - IPv6 firewall with ip6tables | ||
+ | | ||
+ | | ||
+ | Process: 15116 ExecStart=/ | ||
+ | Main PID: 15116 (code=exited, | ||
+ | |||
+ | Dec 28 08:37:13 localhost.localdomain systemd[1]: Starting IPv6 firewall with i> | ||
+ | Dec 28 08:37:13 localhost.localdomain ip6tables.init[15116]: | ||
+ | Dec 28 08:37:13 localhost.localdomain systemd[1]: Started IPv6 firewall with ip> | ||
+ | </ | ||
+ | |||
+ | Nachfolgender Befehl überprüft, | ||
+ | < | ||
+ | # ip6tables -nvL | ||
+ | Chain INPUT (policy ACCEPT 0 packets, 0 bytes) | ||
+ | pkts bytes target | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 ACCEPT | ||
+ | 0 0 REJECT | ||
+ | |||
+ | Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) | ||
+ | pkts bytes target | ||
+ | 0 0 REJECT | ||
+ | |||
+ | Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) | ||
+ | pkts bytes target | ||
+ | </ | ||
+ | |||
+ | ===== Weitere Informationen ===== | ||
+ | |||
+ | Weiterführende Informationen zu '' | ||
+ | * [[tachtler: | ||
tachtler/centos_8_-_iptables.txt · Zuletzt geändert: 2020/04/25 10:24 von klaus