个人工具
119.28.94.63
该IP地址的讨论
登录
查看“UbuntuHelp:Firewall”的源代码 - Ubuntu中文
UbuntuHelp
讨论
查看源代码
历史
搜索
导航
首页
最近更改
随机页面
页面分类
帮助
编辑
编辑指南
沙盒
新闻动态
字词处理
工具
链入页面
相关更改
特殊页面
页面信息
查看“UbuntuHelp:Firewall”的源代码
来自Ubuntu中文
←
UbuntuHelp:Firewall
跳转至:
导航
,
搜索
因为以下原因,你没有权限编辑本页:
您所请求的操作仅限于该用户组的用户使用:
用户
您可以查看与复制此页面的源代码。
{{From|https://help.ubuntu.com/community/Firewall}} {{Languages|UbuntuHelp:Firewall}} == Introduction == The Linux kernel includes the <code><nowiki>netfilter</nowiki></code> subsystem, which is used to manipulate or decide the fate of network traffic headed into or through your server or desktop system. All modern Linux firewall solutions use this system for packet filtering. The kernel's packet filtering system would be of little use to administrators without a userspace interface to manage it. This is the purpose of <code><nowiki>iptables</nowiki></code>. When a packet reaches your server, it will be handed off to the <code><nowiki>netfilter</nowiki></code> subsystem for acceptance, manipulation, or rejection based on the rules supplied to it from userspace via <code><nowiki>iptables</nowiki></code>. Thus, <code><nowiki>iptables</nowiki></code> is all you need to manage your firewall if you're familiar with it, but many frontends are available to simplify the task. The upshot of all this is that users can configure the firewall to allow certain types of network traffic to pass into and out of a system (for instance SSH or web server traffic). This is done by opening and closing TCP and UDP ports in the firewall, and can be configured in more detail by restricting access to specific IPs or IP address ranges. Read on for options about managing the firewall. == Managing the Firewall == Here are your options for manipulating the firewall in Ubuntu. Each program has its own wiki page describing how to install and configure it. === iptables === [[UbuntuHelp:Iptables|Iptables]] is the traditional interface for configuring the firewall in Linux operating systems, as explained above. All configuration is performed from the terminal. === Uncomplicated Firewall === [[UbuntuHelp:UFW|UFW]] (Uncomplicated Firewall) is a frontend for iptables and is particularly well-suited for host-based firewalls. UFW was developed specifically for Ubuntu (but is available in other distributions), and is also configured from the terminal. [[UbuntuHelp:Gufw|Gufw]] is a graphical frontend to UFW, and is recommended for beginners. UFW was introduced in Ubuntu 8.04 LTS (Hardy Heron), and is available by default in all Ubuntu installations after 8.04 LTS. === Firestarter === [[UbuntuHelp:Firestarter|Firestarter]] is a popular graphical frontend for configuring iptables in Linux systems, however it is no longer actively maintained. https://help.ubuntu.com/community/IconsPage?action=AttachFile&do=get&target=IconNote.png Please note that it conflicts with ufw. == See Also == * [[UbuntuHelp:Security|Security]] Other: * [[UbuntuHelp:DynamicFirewall|DynamicFirewall]] * [[UbuntuHelp:firewall/ipkungfu|firewall/ipkungfu]] * [[UbuntuHelp:firewall/Linux_UPnP_Internet_Gateway_Device_(linux-idg)|firewall/Linux_UPnP_Internet_Gateway_Device_(linux-idg)]] * [[UbuntuHelp:Router/Firewall|Router/Firewall]] == External Links == * http://en.wikipedia.org/wiki/Firewall * http://www.netfilter.org/ - Netfilter and iptables homepage * http://www.fs-security.com/ - Firestarter homepage * [[UbuntuWiki:UbuntuFirewall]] - Uncomplicated Firewall homepage ---- [[category:CategoryNetworking]] [[category:CategorySecurity]] [[category:UbuntuHelp]]
该页面使用的模板:
模板:From
(
查看源代码
)
模板:Languages
(
查看源代码
)(受保护)
模板:Languages/Lang
(
查看源代码
)(受保护)
返回至
UbuntuHelp:Firewall
。