LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   iptables editor (https://www.linuxquestions.org/questions/linux-security-4/iptables-editor-566571/)

JJX 07-04-2007 07:56 AM
iptables editor
 
Is there any software/tool (http based or command line even better) that will allow manipulation of iptables?

I am searching a tool that will allow moving rules up and down, allow easy design and applying rules at the end.

Is there such a tool?

Thanks

Kaamos 07-04-2007 08:42 AM
Hi !
Hmm ... You should see FW Builder. it's a multi-platform firewall configuration and management tool. Somekind of Frontend or GUI.
http://www.fwbuilder.org/

Seeya.

JJX 07-04-2007 02:17 PM
this look nice

However, is any other rpogram with command line & ncurses (for example) ??

win32sux 07-04-2007 03:34 PM
The only curses-based iptables front-end I know of is ipmenu, however it's old and unmaintained. Not even Debian carries it anymore AFAICT. Have you considered using a regular iptables script? They do everything you are asking for, that is, "allow moving rules up and down, allow easy design and applying rules at the end".

JJX 07-06-2007 12:56 PM
Quote:
Originally Posted by win32sux
Have you considered using a regular iptables script? They do everything you are asking for, that is, "allow moving rules up and down, allow easy design and applying rules at the end".
what u mean regular?
May u give any reference/link?

win32sux 07-07-2007 09:40 AM
Quote:
Originally Posted by JJX
what u mean regular?
May u give any reference/link?
By regular I mean a typical solution. Typically, experienced system administrators will either use an iptables script or they will work with iptables "live" (iptables-restore/save/etc). Very seldom will they go for iptables front-ends such as what you are asking for. It's just so much simpler to use a script. You simply make the necessary edits to it and then execute it, which allows one to do everything you required in the OP.

Not sure why you need an example, as an iptables script is basically just a bunch of iptables commands placed in order in a text file, but I'm sure there's tons of examples on Google: http://www.google.com/search?&q=iptables+script+example

whistl 07-07-2007 02:48 PM
shorewall
 
Check out Shorewall. It's administered by editing text based config files, not raw IPtables rules, and isn't hard to use, once you get past the learning curve.

JJX 07-07-2007 06:35 PM
Quote:
Originally Posted by win32sux
By regular I mean a typical solution. Typically, experienced system administrators will either use an iptables script or they will work with iptables "live" (iptables-restore/save/etc). Very seldom will they go for iptables front-ends such as what you are asking for. It's just so much simpler to use a script. You simply make the necessary edits to it and then execute it, which allows one to do everything you required in the OP.

Not sure why you need an example, as an iptables script is basically just a bunch of iptables commands placed in order in a text file, but I'm sure there's tons of examples on Google: http://www.google.com/search?&q=iptables+script+example

this is what i am doing, but some times it becomes really big and unmaintained.

win32sux 07-07-2007 07:16 PM
Quote:
Originally Posted by JJX
this is what i am doing, but some times it becomes really big and unmaintained.
What kind of maintenance are you referring to? That sounds like an issue with the admin, not the software.

Peter_APIIT 07-08-2007 04:27 AM
Man iptables is the best because you can learn a lot of thing during the set up.

JJX 07-08-2007 10:41 AM
i am searching for a tool to make my life easier , nothing more ;)

Peter_APIIT 07-09-2007 05:07 AM
Firewall builder, firewall starter firehol, arno iptables and many more.

Kaamos 07-09-2007 08:04 AM
Then, in that case ... FW Builder, Shorewall, LEAF ... If you want to make your life easier ...
You should try one of them.


All times are GMT -5. The time now is 03:00 AM.