Understanding an iptables shell script
SITUATION:
iptables
iptables/pf rule to only allow XY application/user?
I think there is no iptables/pf solution to only allow an XY application on e.g.: outbound tcp port 80, eth0. So if I have a userid: “500” then how could I block any other communications then the mentioned on port 80/outbound/tcp/eth0? (e.g.: just privoxy is using port 80 on eth0)
Set some firewall ports to only accept local network connections?
How do I set up the firewall on a system in a LAN so that some ports are only open to connections from the local area network, and not from the outside world?
iptables redirect outside requests to 127.0.0.1
I have a service running on 127.0.0.1 with port 2222. I need to forward all requests to 192.168.2.2:2222 (outside IP) only from subnet 192.168.1.0/24 to 127.0.0.1:2222.
Limit max connections per IP address and new connections per second with iptables
We have an Ubuntu 12.04 server with httpd on port 80 and we want to limit:
Redirect all non-local traffic to a socks proxy
Is it possible to redirect all non-local traffic to a socks proxy?
port forwarding to application in network namespace with vpn
I was able to set up a network namespace, establish a tunnel with openvpn and start an application that uses this tunnel inside the namespace. So far so good, but this application can be accessed via a web interface and I cant’t figure out how to route requests to the web interface inside my LAN.
Settings when using a bridge
I have a bridge set up between my physical Ethernet interface, eth0, and the virtual interface for OpenVPN, tap0. The bridge has an IP address, and the machine can be contacted on that IP address from either interface. However, I don’t know what to configure to get traffic flowing across the bridge, between the interfaces.
iptables –set-mark – Route diferent ports through different interfaces
Short story,
3 interfaces, eth0 (LAN), eth1(ADSL), eth2(4G).
eth0 -> eth1: Works
(ports 80, 443, 4070) eth0 -> eth2: Doesn’t happen
How is the IFB device positioned in the packet flow of the Linux kernel
I would like to know the exact position of the following device in the packet flow for ingress traffic shaping: