Help answer threads with 0 replies.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 05-25-2004, 02:39 PM   #1
Registered: Dec 2003
Posts: 235

Rep: Reputation: 30
Linux Router/Firewall Books

I want to put up a linux firewall/router for our office and I'm looking for good books to help me with my research and learning how to set this up. Can anyone recommend a good book for learning how to set up a firewall/router linux box?
Old 05-25-2004, 02:44 PM   #2
Registered: Aug 2003
Posts: 46

Rep: Reputation: 15
Check out the netfilter site here

Just about anything you could want to know about iptables.
Old 05-26-2004, 09:51 AM   #3
Registered: Dec 2003
Posts: 235

Original Poster
Rep: Reputation: 30
I was kinda intrested in books that are made for "iptable idiots".
Old 05-26-2004, 05:17 PM   #4
Registered: Aug 2003
Posts: 46

Rep: Reputation: 15
Personally I have just used the online docs and tutorials. I haven't read any of the books, so I can't recommend any in good conscience. Have you tried a local library? If you find something that is a good reference for you, amazon most likely has it. Good Luck.
Old 05-26-2004, 10:16 PM   #5
Registered: May 2004
Posts: 47

Rep: Reputation: 15

at first, I had difficulties understanding IP-TABLES too. So, I had my GAL read the manual I got from the internet and had her explain it to me on our date. Below is her explanations. Though it's not complete and came for a GAL of a NEWBIE, it will get your feet dancing!


- filter (table)
input,forward,output (chains for the table filter )
"I use this to check incoming, outgoing and passing packets."

- nat (table)
prerouting,output,postroute (chains for the table nat)
"I use this for masquerading pockets. see SNAT and DNAT option"

- mangle (table)
prerouting,output,input,forward,postrouting (chains for the table mangle)
"I dont know mangle yet!"


Accept all incoming packets from network. -A is add rule, -s is the source and -j is jump to the action to be taken to the packet
ex1. iptables -A INPUT -s -j ACCEPT

DROP all ssh coming from network to network. -d is the destination address and -dport is the destination port. -j DROP will drop the packet without notification. replace DROP with REJECT to politely reject the ssh request or send a .
ex2. iptables -A INPUT -s -d -dport 22 -j DROP

Note : it is better to make a script when creating rules. my first IP-Tables script does the following;

1) flush all rules
2) allow all access of the local host.
3) IP-TABLE Rules Rules
4) Save the rule and restart ip-tables. (optional)

I will add some more later. My mom is calling me! hehe!
Old 05-26-2004, 10:59 PM   #6
Registered: Aug 2002
Location: MN USA
Distribution: slakware 9.0
Posts: 121

Rep: Reputation: 15
I used "Linux Firewalls" by Robert Ziegler and was satisfied with the results. Every time I go back to it I learn a little more.
Old 05-26-2004, 11:04 PM   #7
Senior Member
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 65
The Red Hat Linux Firewalls book is pretty good too, though it does have a bias towards Redhat/Fedora commands.

Also, take a look at the frozen-tux tutorial that's available through the netfilter website (available at the link dr0ker posted) or here

Last edited by Capt_Caveman; 05-26-2004 at 11:07 PM.
Old 05-27-2004, 02:15 AM   #8
Registered: Apr 2004
Posts: 194

Rep: Reputation: 15
yeah Red Hat linux Firewall book is damn good you should read this book if you want to set up your firewall it will really help you



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Small Linux Router/firewall behind D-Link Hardware router dleidlein Linux - Networking 6 04-30-2007 06:12 AM
Linux Firewall/Router cmt9000 Linux - Security 12 10-23-2005 12:52 PM
linux as a firewall+router Doug Hammond Linux - Networking 1 02-03-2005 11:18 AM
setup linux firewall/router sub_netter Linux - Networking 4 08-15-2003 07:18 AM
Setting up a linux router/firewall Biscuitman Linux - Hardware 1 04-25-2003 07:32 PM

All times are GMT -5. The time now is 07:22 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration