Share your knowledge at the LQ Wiki.
Go Back > Forums > Other *NIX Forums > Solaris / OpenSolaris
User Name
Solaris / OpenSolaris This forum is for the discussion of Solaris, OpenSolaris, OpenIndiana, and illumos.
General Sun, SunOS and Sparc related questions also go here. Any Solaris fork or distribution is welcome.


  Search this Thread
Old 01-04-2008, 07:26 PM   #1
Senior Member
Registered: Feb 2003
Location: Washington D.C
Posts: 2,171

Rep: Reputation: 60
Solaris 10 and IPTABLES

I am so used to using IPTABLES-NETFILTER and Linux. I now have to learn how to use Solaris 10 and I wanted to know if I can download and use IPTABLES as the firewall software for the distro?
Old 01-04-2008, 10:28 PM   #2
Registered: Feb 2004
Location: Outside Paris
Distribution: Solaris 11.3, Oracle Linux, Mint
Posts: 9,707

Rep: Reputation: 416Reputation: 416Reputation: 416Reputation: 416Reputation: 416
You can't. iptables/netfilter only run on Linux. Solaris is using ipfilter, which is portable and not constraint by the GPL.
Old 01-05-2008, 08:20 AM   #3
Registered: Jan 2006
Posts: 168

Rep: Reputation: 30
Try ip filter; it's easy and powerful.

You can change directories into /etc/ipf. In there you will find a few files to edit. In 11/06 for instance, you have the file pfil.ap. Edit that file and uncomment the line with your network card type.

The ipf.conf file is the one where you put the rules of your firewall.

You can always create a file called ippool.conf to create pools (groups of ips for instance) and then implement rules (in ipf.conf) for the pools. Finally, you can create ipnat.conf for network address translation.

The main commands are ippool, ipf, ipfstat and ipnat.

You will have to unplumb the card and plumb it back up the first time (or reboot) to load the ipf module into the card (check this with ifconfig hme0 (for instance) modlist.

IPF is service based so type svcs -a | grep ipf and you should see two services (pfil and ipf). Have fun.

Old 01-05-2008, 10:06 AM   #4
Senior Member
Registered: Feb 2003
Location: Washington D.C
Posts: 2,171

Original Poster
Rep: Reputation: 60
I will check it out. thanks


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Compiz on Solaris x86 - Eye Candy for Solarisís Desktop LXer Syndicated Linux News 1 05-30-2007 02:31 PM
LXer: Marvell Yukon Driver (SK-9E22) for Solaris (x64) installation procedure in Solaris Express LXer Syndicated Linux News 0 04-22-2007 03:16 AM
LXer: Hp Puts Solaris on More X64 Servers, Partners for Solaris Emulation LXer Syndicated Linux News 0 02-07-2007 07:21 AM
great solaris website for newbies feetyouwell Solaris / OpenSolaris 2 12-06-2006 12:14 AM
iptables v1.2.9: Unknown arg `/sbin/iptables' Try `iptables -h' or 'iptables --help' Niceman2005 Linux - Security 4 12-29-2005 08:20 PM > Forums > Other *NIX Forums > Solaris / OpenSolaris

All times are GMT -5. The time now is 03:16 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration