[TriLUG] iptables vs. ipchains

Tom 'spot' Callaway tcallawa at redhat.com
Wed Sep 4 14:52:36 EDT 2002


On Wed, 2002-09-04 at 14:48, Greg Brown wrote:
> Sorry if this has been covered recently, I'm still going through all my old 
> digests.
> 
> I have two questions:
> 
> 1.  I am curently using ipchains, is there a good reason to make the switch 
> to iptables?

Many many reasons. Stateful filtering and connection tracking stand out.

> 2. Does either ipchains or iptables have the ability to filter traffic on an 
> interface based on MAC address?

iptables does.

> I guess I have three questions.
> 
> 3.  Is there a good iptables tutorial on-line for people who currently use 
> ipchains?

Well, I just gave a talk last night at the NCSU LUG on how to build an
iptables firewall. I'd like to think its a good tutorial. ;)

http://www.linux.ncsu.edu/lug/lectures/firewall/

~spot
---
Tom "spot" Callaway <tcallawa(a)redhat*com> Red Hat Sales Engineer
Sair Linux and GNU Certified Administrator (LCA)
Red Hat Certified Engineer (RHCE)
GPG: D786 8B22 D9DB 1F8B 4AB7  448E 3C5E 99AD 9305 4260

The words and opinions reflected in this message do not necessarily
reflect those of my employer, Red Hat, and belong solely to me.

"Immature poets borrow, mature poets steal." --- T. S. Eliot




More information about the TriLUG mailing list