Programmer Think

preface Firewall of Linux system - netfilter/iptables: IP packet filtering system, which is actually composed of two components, netfilter and iptables. It mainly works at the network layer for IP packets. It is reflected in the processing of IP address, port and other information in the packet. 1, Relationship between netfilter and iptable ...

catalogue 1 Experimental Environment 2 match ing conditions 2.1 match by agreement 2.2 match by source IP 2.3 matching by destination IP 2.4 press to enter network card device matching 2.5 match by output network card address 2.6 match by source port 2.7 match by target port 2.8 other matches 3 action jump (target) 3.1 LOG 3.2 ACCE ...

1, Deploy PPTP VPN server 1. Check whether the server system environment supports the installation of pptp 1,Check whether the system kernel supports MPPE patch [root@PPTP ~]# modprobe ppp-compress-18 && echo success display success Description system support MPPE If the patch is not supported, you need to install it first k ...

Linux-IP tables Brief introduction Netfilter is a Linux 2.4 kernel firewall framework proposed by Rusty Russell. The rules set by Netfilter are stored in the kernel space, while iptables is an application layer application. It modifies XXtables(Netfilter configuration table) stored in the kernel space through the interface released by Netfilt ...

For image download, domain name resolution and time synchronization, please click Alibaba open source mirror station Practice environment CentOS-7-x86_64-DVD-1810 Docker 19.03.9 Kubernetes version: v1.20.5 Before starting One Linux operating system or more, compatible with deb,rpm Ensure that each machine has 2G memory or more Ensure th ...

1, Introduction to fire wall In Linux, the firewall strategy is implemented based on netfilter. 1. netfilter: there is a security plug-in netfilter (access control list) in the kernel. There are many detailed rules in this list. When this rule is allowed or denied, it can control whether other hosts can access, which greatly improves the s ...

Samba is a free software that implements the SMB protocol on Linux and UNIX systems and consists of server and client programs.SMB (Server Messages Block) is a communication protocol for sharing files and printers on a local area network. It provides file and printer sharing services between different computers in th ...

Opening Through the previous article Istio Sidecar injection principle It can be found that the Sidecar application has been injected at the same time when the application is submitted to the kubernate deployment. If you are careful, you can also find that in addition to the application of istio proxy, there is also an Init Containers of istio ...

DDoS deflate is a very small tool for defense and mitigation of DDoS attacks. It can create a large number of IP address information of Internet connection by monitoring netstat, and prohibit or block these non IP addresses through IPTABLES. It must be downloaded and installed in the terminal account under root authority. The specific commands ...

2, Backup service (rsync) (1) rsync service introduction Rsync is an open source, fast, multi-functional, full and incremental local or remote data synchronization backup tool. And it can realize the backup and migration of data without changing the attribute information of the original data. Rsync software is suitable for unix/linux/windows an ...