Changing the iptables rules is quicker.
更改iptables规则更为迅速。
This is where the netfilter/iptables system can help.
这就是netfilter/iptables系统的用武之处。
To learn more about iptables, visit the project homepage.
要更多地了解iptables,可以访问项目主页。
In the virtual machine itself (for example, using iptables).
在虚拟机本身(例如,使用iptables)。
Add rule #iptables -A INPUT -p tcp --dport 5900:5920 -j ACCEPT.
添加规则 #iptables-AINPUT-ptcp --dport 5900:5920 -jACCEPT。
Check that the service is running and the rules are in effect: service iptables status.
检查此服务是否在运行及这些规则是否有效:serviceiptablesstatus。
Now that we have iptables in the kernel, it's time to start taking advantage of it!
在我们的内核中已经有了iptables,应该开始利用它!
Configure iptables to allow only three connection attempts on port 2022 within 30 seconds.
配置iptables,以便在30秒内仅允许在端口2022上有三个连接尝试。
There's a netfilter (iptables) mailing list available, as well as one for netfilter developers.
可以使用netfilter (iptables)邮件列表,而且 有一个适用于 netfilter开发人员。
Add or remove the lines as desired; once you're done, start the service: service iptables start.
可以随意地添加或移除一些行:完成后,启动这个服务:serviceiptablesstart。
The iptables man page is very detailed and is a shining example of what a man page should be.
iptablesman页面非常详细,并且它是man页面的范例。
The compulsory command section of the command above is the most important part of the iptables command.
上面这条命令中具有强制性的command部分是iptables命令的最重要部分。
Note that the table isn't specified. iptables defaults to the filter table when none is specified.
在没有特别指定的情况下,iptables默认值为过滤器表。
Iptables are used to set up, maintain, and inspect the tables of IP packet filter rules in the Linux kernel.
iptables用于建立、维护和检查Linux内核中的ip数据包过滤器规则表。
This command can help you construct complex iptables rules by prompting you for additional parameters and options.
如果你要创建复杂的规则时,它会提醒你可能用到的参数或选项。
If you specify an existing number when adding a rule to a chain, iptables adds the new rule before (or above) the existing rule.
如果你使用一个已经存在的整数向规则链中添加规则,新规则会自动加到那条规则的前面。
These include a basic networking concepts HOWTO, a netfilter (iptables) HOWTO, a NAT HOWTO, and a netfilter hacking HOWTO for developers.
这些作品包括基本网络概念HOWTO、netfilter (iptables) HOWTO、NAT HOWTO和适合于开发人员的 netfilter修改 HOWTO。
When you use Linux, you need iptables (see Resources) to define a policy of responding to an incoming packet by accepting, dropping, or rejecting it.
使用Linux时,需要利用iptables(参阅参考文献)来定义对传入数据包的响应策略,是接收、丢弃还是拒绝。
There's a good section that shows how to use iptables to mark packets, and then use Linux routing functionality to route the packets based on these marks.
它很好地显示了如何使用iptables来标记信息包,然后根据这些标记来使用linux路由功能发送信息包。
Visit the home page for the netfilter team to find lots of excellent resources, including the iptables sources, and Rusty's excellent "unreliable guides".
netfilter小组的主页上有许多优秀的资源,包括iptables源码,有Rusty的优秀作品“ unreliable guides ”。
The optional match section of the iptables command specifies the characteristics that a packet should have to match the rule, such as source and destination address, protocol, etc.
iptables命令的可选match部分指定信息包与规则匹配所应具有的特征(如源和目的地地址、协议等)。
Ensure the iptables is initialized with your new configurations when the virtual machine reboots and not with the default setup. You can issue the following commands to save the firewall rules.
确保iptables在虚拟机重启时用新配置而不是默认设置进行初始化。
Ensure the iptables is initialized with your new configurations when the virtual machine reboots and not with the default setup. You can issue the following commands to save the firewall rules.
确保iptables在虚拟机重启时用新配置而不是默认设置进行初始化。
应用推荐