<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <HTML> <HEAD> <META NAME="GENERATOR" CONTENT="SGML-Tools 1.0.9"> <TITLE>Linux IPCHAINS-HOWTO</TITLE> <LINK HREF="IPCHAINS-HOWTO-1.html" REL=next> </HEAD> <BODY> <A HREF="IPCHAINS-HOWTO-1.html">Next</A> Previous Contents <HR> <H1>Linux IPCHAINS-HOWTO</H1> <H2>Rusty Russell</H2>v1.0.8, Tue Jul 4 14:20:53 EST 2000 <P><HR> <EM>This document aims to describe how to obtain, install and configure the enhanced IP firewalling chains software for Linux, and some ideas on how you might use them.</EM> <HR> <P> <H2><A NAME="toc1">1.</A> <A HREF="IPCHAINS-HOWTO-1.html">Introduction</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-1.html#ss1.1">1.1 What?</A> <LI><A HREF="IPCHAINS-HOWTO-1.html#ss1.2">1.2 Why?</A> <LI><A HREF="IPCHAINS-HOWTO-1.html#ss1.3">1.3 How?</A> <LI><A HREF="IPCHAINS-HOWTO-1.html#ss1.4">1.4 Where?</A> </UL> <P> <H2><A NAME="toc2">2.</A> <A HREF="IPCHAINS-HOWTO-2.html">Packet Filtering Basics</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-2.html#ss2.1">2.1 What?</A> <LI><A HREF="IPCHAINS-HOWTO-2.html#ss2.2">2.2 Why?</A> <LI><A HREF="IPCHAINS-HOWTO-2.html#ss2.3">2.3 How?</A> </UL> <P> <H2><A NAME="toc3">3.</A> <A HREF="IPCHAINS-HOWTO-3.html">I'm confused! Routing, masquerading, portforwarding, ipautofw...</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-3.html#ss3.1">3.1 Rusty's Three-Line Guide To Masquerading</A> <LI><A HREF="IPCHAINS-HOWTO-3.html#ss3.2">3.2 Gratuitous Promotion: WatchGuard Rules</A> <LI><A HREF="IPCHAINS-HOWTO-3.html#ss3.3">3.3 Common Firewall-like Setups</A> <LI><A HREF="IPCHAINS-HOWTO-3.html#ss3.4">3.4 More Information on Masquerading</A> </UL> <P> <H2><A NAME="toc4">4.</A> <A HREF="IPCHAINS-HOWTO-4.html">IP Firewalling Chains</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-4.html#ss4.1">4.1 How Packets Traverse The Filters</A> <LI><A HREF="IPCHAINS-HOWTO-4.html#ss4.2">4.2 Useful Examples</A> </UL> <P> <H2><A NAME="toc5">5.</A> <A HREF="IPCHAINS-HOWTO-5.html">Miscellaneous.</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.1">5.1 How to Organize Your Firewall Rules</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.2">5.2 What Not To Filter Out</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.3">5.3 Filtering out Ping of Death</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.4">5.4 Filtering out Teardrop and Bonk</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.5">5.5 Filtering out Fragment Bombs</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.6">5.6 Changing Firewall Rules</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.7">5.7 How Do I Set Up IP Spoof Protection?</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.8">5.8 Advanced Projects</A> <LI><A HREF="IPCHAINS-HOWTO-5.html#ss5.9">5.9 Future Enhancements</A> </UL> <P> <H2><A NAME="toc6">6.</A> <A HREF="IPCHAINS-HOWTO-6.html">Common Problems</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.1">6.1 ipchains -L Freezes!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.2">6.2 Inverse doesn't work!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.3">6.3 Masquerading/Forwarding Doesn't Work!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.4">6.4 -j REDIR doesn't work!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.5">6.5 Wildcard Interfaces Don't Work!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.6">6.6 TOS Doesn't Work!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.7">6.7 ipautofw and ipportfw Don't Work!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.8">6.8 xosview is Broken!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.9">6.9 Segmentation Fault With `-j REDIRECT'!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.10">6.10 I Can't Set Masquerading Timeouts!</A> <LI><A HREF="IPCHAINS-HOWTO-6.html#ss6.11">6.11 I Want to Firewall IPX!</A> </UL> <P> <H2><A NAME="toc7">7.</A> <A HREF="IPCHAINS-HOWTO-7.html">A Serious Example.</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-7.html#ss7.1">7.1 The Arrangement</A> <LI><A HREF="IPCHAINS-HOWTO-7.html#ss7.2">7.2 Goals</A> <LI><A HREF="IPCHAINS-HOWTO-7.html#ss7.3">7.3 Before Packet Filtering</A> <LI><A HREF="IPCHAINS-HOWTO-7.html#ss7.4">7.4 Packet Filtering for Through Packets</A> <LI><A HREF="IPCHAINS-HOWTO-7.html#ss7.5">7.5 Finally</A> </UL> <P> <H2><A NAME="toc8">8.</A> <A HREF="IPCHAINS-HOWTO-8.html">Appendix: Differences between ipchains and ipfwadm.</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-8.html#ss8.1">8.1 Quick-Reference table.</A> <LI><A HREF="IPCHAINS-HOWTO-8.html#ss8.2">8.2 Examples of translated ipfwadm commands</A> </UL> <P> <H2><A NAME="toc9">9.</A> <A HREF="IPCHAINS-HOWTO-9.html">Appendix: Using the ipfwadm-wrapper script.</A></H2> <P> <H2><A NAME="toc10">10.</A> <A HREF="IPCHAINS-HOWTO-10.html">Appendix: Thanks.</A></H2> <UL> <LI><A HREF="IPCHAINS-HOWTO-10.html#ss10.1">10.1 Translations</A> </UL> <HR> <A HREF="IPCHAINS-HOWTO-1.html">Next</A> Previous Contents </BODY> </HTML>