Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Distribution: Server - Debian Desktop - Linux Mint
Posts: 219
Rep:
Question about firewall and iptables
Is there any tutorial which i learn more about it?
All i want to know is to how to check what ports are open and what are closed,and how to add dynamic ip adress for specific port.
Or is there are web gui which could help in this.(like ip cop which which is stanalone linux)
There are numerous GUIs for setting up the firewall.
The iptables documentation has really improved in the past few years, so a good place to start would be:
man iptables
I've found most 'tutorials' to be pretty poor - rather than explain things they just say "type in blah and blah and blah" and you don't really learn anything about how to control what comes in and what goes out and what gets forwarded.
Which ports are open has absolutely nothing to do with the firewall rules; that depends on what services are running and the connections to those services - in ftp for example, another port is negotiated and the remote machine reconnects on that port. Of course if you drop all packets to a server's listening port then that port is effectively 'closed'.
I've found most 'tutorials' to be pretty poor - rather than explain things they just say "type in blah and blah and blah" and you don't really learn anything about how to control what comes in and what goes out and what gets forwarded.
I'm going to disagree with that; have a look at the Iptables tutorial at frozentux. Its probably closer to a manual than a tutorial, and it assumes that you have a solid understanding of networking (...and not everyone does, me included) before you start. Then have a look at the 'tutorials' (well, examples) that you can find scattered aroung the web and see if you can understand what is going on.
I'll certainly agree though that just typing in something that someone else uses is not going to help your understanding much, if at all. And, if you do this in a different context from the one that they had when they wrote it, that can clearly be a security risk.
This, for me is the definitive guide http://iptables-tutorial.frozentux.net/ (I think this is what salasi was probably referring to) and I think you can get there from chris's link as well.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.