AskUbuntuLog iptables DROPs #networking #iptables #firewall #syslog
Green WebpageManaging firewall rules is a crucial security task on Linux systems. In #Debian 13, depending on the server configuration, different firewall tools can be installed. The most common are #UFW, #iptables, or #firewalld. You must first check if your firewall is active and what rules are in place. Also, make sure that network ports are open or blocked.🔥
Continue reading:👇
https://greenwebpage.com/community/how-to-check-firewall-status-on-debian-13/
#UFW #IPTables #Firewalld #FirewallStatus #Debian13 #LinuxAdministration #GreenWebpage
Widowild 
KipJayChou 
RE: https://mstdn.feddit.social/@admin/115716445396750150
本来写了很多,但是太麻烦了,就用这个最简单的方法吧:编译完Linux内核就不用了
NAT端口转发尝试:
VM1:
ifconfig
得到内外IP为192.168.122.2
Hetzner0:
sudo virsh list --all
列出虚拟机
sudo virsh net-dhcp-leases default
确认VM IP 是 192.168.122.2
sudo iptables -t nat -A PREROUTING -p tcp --dport 2222 -j DNAT --to-destination 192.168.122.2:22
设置端口转发
sudo iptables -I FORWARD -d 192.168.122.2/24 -p tcp --dport 22 -j ACCEPT
sudo iptables -I FORWARD -s 192.168.122.2/24 -p tcp --sport 22 -j ACCEPT
允许转发流量
sudo apt install iptables-persistent -y
sudo netfilter-persistent save
保存配置
其他命令:
sudo iptables -t nat -L PREROUTING -n --line-numbers
查看NAT转发规则
sudo iptables -t nat -D PREROUTING NUMBER
删除规则
LANs can't communicate when WAN is shared #networkmanager #iptables #nat #nmcli #nftables
Klaus Alexander Seistrup@asjo I've been seeing the same pattern for months: #OpenAI's crawlers are slurping anything they can lay their clammy hands on, no matter what /robots.txt? is saying.
So now I regularly grab the IP addresses from the JSON blobs mentions on https://platform.openai.com/docs/bots/ and add them to my #iptables.
/cc #ChatGPT, #GPTBot, #OAI, #SearchBot
ATIL you can use #iptables with wireguard to use one peer as a proxy for another that is not reachable... not super scalable nor dynamic, but still nice.
ppom, going to 39c3Ok I just switched reaction's ip bans from plain iptables to ipset.
This made reaction startup 10 times faster on server 1.
2,600 ips added in 3s instead of 30s.
ipset is far superior than plain iptables for big IP lists. I knew this but I'm still surprised now that I see this!
And the firewall stack must be much faster as well when treating incoming packets!
Diego Córdoba 🇦🇷Nuevo video en el canal de youtube para ver el fin de semana! 🚀
A raíz de algunas consultas de nuestros alumnos, hoy explicamos, paso a paso, y con un ejemplo práctico, cómo migrar un firewall #iptables a #nftables en #GNU #Linux 🛡
Ya no hay excusas para migrar nuestra vieja configuración de iptables al nuevo framework de filtrado de tráfico del núcleo Linux 🙂
Espero que les guste y les sirva!
Cualquier consulta, o si lo hacen de alguna otra forma, me comentan! 💬
Simon 🐮