Scribd
Upload
137 views7 pages

Firewall Rules Table Final

This document contains a firewall configuration checklist with sections for machine information, required modules, process options, default policies, and rules for various chains. The machine section includes the hostname, OS, kernel version, gateway, and iptables location. The modules section lists required iptables modules. The process section notes options like IP forwarding. The policies section sets default rules for chains like INPUT, OUTPUT and FORWARD. Subsequent sections provide templates for rules across different chains and services.

Uploaded by

Taras
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
137 views7 pages

Firewall Rules Table Final

This document contains a firewall configuration checklist with sections for machine information, required modules, process options, default policies, and rules for various chains. The machine section includes the hostname, OS, kernel version, gateway, and iptables location. The modules section lists required iptables modules. The process section notes options like IP forwarding. The policies section sets default rules for chains like INPUT, OUTPUT and FORWARD. Subsequent sections provide templates for rules across different chains and services.

Uploaded by

Taras
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 7

Firewall - Reference Form

1. CONFIGURATION

Machine information

Hostname: ____________________________________

Operating system: ______________________________

Kernel build: ___________________________________

Gateway address: _______________________________

IPTables location (relative to root): __________________

Machine configuration

Interface IPAddress Netmask Broadcast Mac Address

2. MODULES

Required modules

Module Enable Module Enable Module Enable


ip_tables ipt_LOG ipt_MASQUERADE
ip_contrack ipt_limit ip_conntrack_ftp
iptable_filter ipt_state ip_contrack_irc
iptable_mangle ipt_owner ip_nat_ftp
iptable_nat ipt_REJECT ip_nat_irc

3. PROC INFO

Proc options

Proc Config Enable


ip_forward
rp_filter
proxy_arp
ip_dynaddr

Page 1 of 7
Created by Stuart Clark
Firewall - Reference Form

4. RULES SETUP

Default Policies

Chain ACCEPT DROP REJECT


INPUT
OUTPUT
FORWARD

Bad_packets_chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Allowed_chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Page 2 of 7
Created by Stuart Clark
Firewall - Reference Form

TCP chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

UDP chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Page 3 of 7
Created by Stuart Clark
Firewall - Reference Form

ICMP chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

INPUT chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Page 4 of 7
Created by Stuart Clark
Firewall - Reference Form

FORWARD chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

OUTPUT chain rules

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Page 5 of 7
Created by Stuart Clark
Firewall - Reference Form

Chain name - .

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Chain name - .

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Chain name - .

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Page 6 of 7
Created by Stuart Clark
Firewall - Reference Form

Chain name - .

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Chain name - .

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Chain name - .

Service Source IP Destination IP Protocol SPort DPort Interface Action Extras

Page 7 of 7
Created by Stuart Clark

You might also like