Firewall of Linux system - netfilter/iptables: IP packet filtering system, which is actually composed of two components, netfilter and iptables. It mainly works at the network layer for IP packets. It is reflected in the processing of IP address, port and other information in the packet.
1, Relationship between netfilter and iptable ...
Posted by meir4u on Tue, 08 Feb 2022 11:43:37 +0100
1 Experimental Environment
2 match ing conditions
2.1 match by agreement
2.2 match by source IP
2.3 matching by destination IP
2.4 press to enter network card device matching
2.5 match by output network card address
2.6 match by source port
2.7 match by target port
2.8 other matches
3 action jump (target)
3.2 ACCE ...
Posted by joebarker99 on Thu, 03 Feb 2022 19:28:26 +0100
1, Deploy PPTP VPN server
1. Check whether the server system environment supports the installation of pptp
1,Check whether the system kernel supports MPPE patch
[root@PPTP ~]# modprobe ppp-compress-18 && echo success
display success Description system support MPPE If the patch is not supported, you need to install it first k ...
Posted by jammer on Wed, 19 Jan 2022 16:34:39 +0100
Netfilter is a Linux 2.4 kernel firewall framework proposed by Rusty Russell. The rules set by Netfilter are stored in the kernel space, while iptables is an application layer application. It modifies XXtables(Netfilter configuration table) stored in the kernel space through the interface released by Netfilt ...
Posted by lives4him06 on Thu, 13 Jan 2022 14:51:44 +0100
For image download, domain name resolution and time synchronization, please click Alibaba open source mirror station
Kubernetes version: v1.20.5
One Linux operating system or more, compatible with deb,rpm
Ensure that each machine has 2G memory or more
Ensure th ...
Posted by rtsanderson on Mon, 06 Dec 2021 06:28:40 +0100
1, Introduction to fire wall
In Linux, the firewall strategy is implemented based on netfilter. 1. netfilter: there is a security plug-in netfilter (access control list) in the kernel. There are many detailed rules in this list. When this rule is allowed or denied, it can control whether other hosts can access, which greatly improves the s ...
Posted by xiaix on Sun, 07 Nov 2021 21:33:19 +0100
Samba is a free software that implements the SMB protocol on Linux and UNIX systems and consists of server and client programs.SMB (Server Messages Block) is a communication protocol for sharing files and printers on a local area network. It provides file and printer sharing services between different computers in th ...
Posted by ondemand on Mon, 06 Jul 2020 18:12:38 +0200
Through the previous article Istio Sidecar injection principle It can be found that the Sidecar application has been injected at the same time when the application is submitted to the kubernate deployment.
If you are careful, you can also find that in addition to the application of istio proxy, there is also an Init Containers of istio ...
Posted by virtual_odin on Wed, 27 May 2020 13:02:34 +0200
DDoS deflate is a very small tool for defense and mitigation of DDoS attacks. It can create a large number of IP address information of Internet connection by monitoring netstat, and prohibit or block these non IP addresses through IPTABLES.
It must be downloaded and installed in the terminal account under root authority. The specific commands ...
Posted by vurentjie on Fri, 22 May 2020 16:45:29 +0200
2, Backup service (rsync)
(1) rsync service introduction
Rsync is an open source, fast, multi-functional, full and incremental local or remote data synchronization backup tool. And it can realize the backup and migration of data without changing the attribute information of the original data. Rsync software is suitable for unix/linux/windows an ...
Posted by bloodl on Fri, 01 May 2020 18:49:54 +0200