Eleghị anya ị na-eche Kedu ka esi ahazi firewall na Linux?. Firewall bụ ihe mgbochi na-enyere anyị aka ichekwa ozi anyị site n'ịchịkwa okporo ụzọ dị na netwọk anyị. N'isiokwu a, anyị ga-amụta ka esi eji na hazie mmemme firewall dị ka iptables ma ọ bụ firewalld iji mee ka nchekwa nke sistemụ Linux anyị sie ike. Ịhazi firewall nwere ike ịdị mgbagwoju anya, mana echegbula, anyị ga-akọwara gị ya n'ụzọ dị mfe. dị mfe na kpọmkwem. Ka anyị banye n'ime ụwa Linux a na-adọrọ mmasị ma bara uru!
Nzọụkwụ site nzọụkwụ ➡️ Otu esi ahazi firewall na Linux?
-
Nzọụkwụ mbụ na Kedu ka esi ahazi firewall na Linux? bụ echichi nke iptables. Ubuntu na ọtụtụ nkesa Linux enweelarị ngwugwu a na ndabara.
-
Gbaa mbọ hụ na etinyere 'iptables'. Ị nwere ike ime ya site na iji iwu the sudo apt-nweta wụnye iptables.
-
Mgbe echichi gasịrị, ị nwere ike ịlele ụdị 'iptables' site na iji iwu ahụ iptables - ụdị.
-
Ka ịlele iwu ndị dị na firewall, jiri iwu ahụ sudo iptables -L.
-
Tupu ịgbakwunye iwu ọhụrụ, ọ kacha mma ịkwado iwu ndị dị adị. Ị nwere ike iji iwu ahụ mee ya sudo iptables-save> /file/path.
-
Iji hazie iwu ọhụrụ na firewall, ị nwere ike iji iwu ahụ iptables Nhọrọ na arụmụka kwekọrọ. Dịka ọmụmaatụ, igbochi okporo ụzọ niile na-abata, ị nwere ike iji sudo iptables -P INPUT DROP.
-
Iji kwe ka okporo ụzọ na-abata na ọdụ ụgbọ mmiri akọwapụtara, ịnwere ike iji sudo iptables -A INPUT -p tcp -dport [nọmba ọdụ ụgbọ mmiri] -j መቀበል.
-
Mgbe ịhazi usoro iwu niile, ọ dị oke mkpa ịchekwa mgbanwe ndị ahụ. Ị nwere ike iji ya mee nke a sudo iptables-save> /file/path.
-
Ọ bụrụ na ịchọrọ ịtọgharịa iwu na nhazi ndabara, ị nwere ike iji iwu ahụ sudo iptables-weghachi </file/path.
-
N'ikpeazụ, jide n'aka na iwu na-emetụtakwa mgbe ịmalitegharịa usoro ahụ. Iji mee nke a, ị ga-etinyerịrị ngwugwu 'iptables-persistent' site na iji sudo apt-nweta wụnye iptables-na-adịgide adịgide.
Ajụjụ & Ajụjụ
1. Gịnị bụ firewall?
Firewall, nke a makwaara dị ka firewall, bụ a sistemu nche nke na-achịkwa ma na-enyocha okporo ụzọ netwọkụ, ma ọ bụ na-enye ohere ma ọ bụ na-agọnarị nkwukọrịta kpọmkwem dabere na iwu ndị e guzobere.
2. Gịnị mere ị ga-eji hazie firewall na Linux?
Ịtọlite firewall na Linux dị mkpa iji chebe igwe Linux megide iyi egwu netwọkụ achọghị. Na mgbakwunye, ọ na-enyere aka idobe azụmahịa netwọk nke ọma.
3. Kedu ngwá ọrụ m nwere ike iji hazie firewall na Linux?
Iji hazie firewall na Linux, ị nwere ike iji iptables, ngwá ọrụ a na-ahụkarị nke na-abịa wụnyerịrị na ọtụtụ nkesa Linux.
4. Kedu otu m ga-esi tinye iptables na Linux?
1. Mepee ọnụ.
2. Pịnye iwu ndị a: sudo apt-nweta wụnye iptables
3. Mgbe kpaliri, tinye paswọọdụ gị.
4. Chere ka echichi mechaa.
5. Kedu ka m ga-esi lelee ma etinyere iptables nke ọma?
Iji nyochaa ma arụnyere iptables nke ọma, mepee ọnụ ma mee iwu: sudo iptables -v. Ọ bụrụ na ọ weghachi ozi gbasara ụdị iptables, mgbe ahụ etinyere ya nke ọma.
6. Kedu otu m ga-esi hazie iwu ala na iptables?
1. Mepee ọnụ.
2. Jiri iwu a ka ịgbakwunye iwu: sudo iptables -A INPUT -p tcp –dport 22 -j anabata. Iwu a na-enye ohere okporo ụzọ niile na-abata maka ọdụ ụgbọ mmiri 22 na TCP.
3. Ka ịchekwaa iwu, pịnye: sudo iptables-echekwa.
7. Kedu otu m ga-esi jiri iptables gbochie otu adreesị IP?
Iji gbochie otu adreesị IP, jiri iwu a: sudo iptables -A INPUT -s xxx.xxx.xxx.xxx -j DROP, ebe xxx.xxx.xxx.xxx bụ adreesị IP akọwapụtara nke ịchọrọ igbochi.
8. Kedu ka m ga-esi kwe ka okporo ụzọ gaa n'ọdụ ụgbọ mmiri nwere iptables?
Iji kwe ka okporo ụzọ gaa n'ọdụ ụgbọ mmiri akọwapụtara, jiri iwu a: sudo iptables -A INPUT -p tcp -dport xxx -j anabata, ebe xxx bụ ọnụọgụ nke ọdụ ụgbọ mmiri ị chọrọ imeghe.
9. Kedu ka m ga-esi malitegharịa ma ọ bụ tọgharịa iwu firewall na iptables?
Ka iji iptables tinyegharịa iwu firewall gị, jiri naanị iwu a: sudo iptables -F. Nke a ga-ehichapụ iwu niile dị.
10. Kedu ka m ga-esi hụ na iwu firewall m ga-adịgide mgbe m malitegharịrị usoro Linux m?
Ka ịchekwaa iwu gị kpamkpam, ọbụlagodi mgbe ịmalitegharịrị, ị ga-etinyerịrị ngwungwu iptables na-adịgide adịgide site na iji iwu: sudo apt-nweta install iptables-na-adịgide adịgide. Mgbe emechara nwụnye, a ga-echekwa iwu ndị ahụ na-akpaghị aka.
Abụ m Sebastián Vidal, onye injinia kọmpụta nwere mmasị na teknụzụ na DIY. Ọzọkwa, abụ m onye okike tecnobits.com, ebe m na-ekerịta nkuzi iji mee ka nkà na ụzụ nwetakwuo ohere na nghọta maka onye ọ bụla.