iptables指南的目的是用完整而又简单的方式解释iptables。iptables指南目前是比较稳定的,包含了目前可用的所有matches和targets(在内核中)的信息,以及几个完整的实例脚本和解释。它包含了关于完整的iptables语法,以及其他一些有趣的命令如iptables-save和iptables-restore。
该指南是经过详细的审查和更新的,这在最近几个版本的指南中可以看出来。
如果你需要帮助,你最好通过 访问netfilter的邮件列表。如果需要更多信息请访问 。你可能还需要访问linux安全邮件列表 security-discuss AT linuxsecurity dotcom。这两个邮件列表都是非常大的,应该能帮助你解决不少的问题。
下面是更新的列表。
* Added SCTP match.
* Added addrtype match.
* Added link to policy routing using linux by Matthew G. Marsh.
* Added some internal links for better cross linking.
* Added comment match.
* Added hashlimit match.
* Added new --cmd-owner to owner match.
* Added realm match.
* Added important.gif image sign.
* Added l7-filter to ip_filtering_introduction.sgml.
* Added l7-filter link to other_resources.sgml.
* Added raw table in traversing_of_tables_and_chains.sgml
* Added raw table in how_a_rule_is_built.sgml chapter.
* Added SECMARK and CONNSECMARK to traversing_of_tables_and_chains.sgml.
* Added user specified chains section in traversing_of_tables_and_chains.sgml.
* Added UNTRACKED and new untracked connections section in statemachine.sgml.
* Added SCTP characteristics section to tcp_ip_repetition.sgml
* Added all images for the SCTP chapters.
* Added Whats next? to all chapters.
* Added SCTP headers section in the tcp_ip_repetition.sgml chapter.
* Added CLUSTERIP target.
* Added CONNMARK target.
* Added connmark match.
* Added CONNSECMARK target.
* Added SECMARK target.
* Added NOTRACK target.
* Added NFQUEUE target.
* Added index of all chapters and appendixes.
* Updated all header images from the tcp_ip_repetition.sgml chapter.
* Updated all diagrammatical images to a nicer look.
* Updated admonition images (Jens Larsson)
* Updated tables_traverse.gif with raw table and switched fonts.
* Updated information for the QUEUE target for 2.6.14 kernel.
* Updated ttl match explanation somewhat.
* Updated Print indentation 0.8 inch.
* Updated centered header and footer.
* Removed internal catalogs etc, living off of local ones instead.
* Removed old data in TOS and TTL targets.
* Fixed history.sgml layout.
* Fixed indexing system.
* Fixed minor error in recent match explanation.
* Fixed --limit-burst, bad explanation.
* Fixed s/package/packet/ in MARK target. (G.W. Haywood)
* Fixed all sgml tables.
* Indexed commercial_products.sgml.
* Indexed and fixed markup of debugging.sgml.
* Indexed and fixed markup of example_scripts.sgml.
* Indexed and fixed markup of how_a_rule_is_built.sgml.
* Indexed and fixed markup of introduction.sgml
* Indexed and fixed markup of ip_filtering_introduction.sgml.
* Indexed and fixed markup of iptables_matches.sgml.
* Indexed and fixed markup of iptables_targets.sgml.
* Indexed and fixed markup of nat_introduction.sgml.
* Indexed and fixed markup of rc_firewall.sgml.
* Indexed and fixed markup of statemachine.sgml.
* Indexed and fixed markup of tcp_ip_repetition.sgml.
* Indexed and fixed markup of traversing_of_tables_and_chains.sgml.
阅读(1244) | 评论(0) | 转发(0) |
