[TriLUG] iptables vs. ipchains

Jason Tower jason at cerient.net
Wed Sep 4 15:15:42 EDT 2002


good presentation tom.  it's worth noting that the in latest red hat
"null" beta, if you choose to enable a firewall during the installation
process, the resulting setup uses iptables by default instead of ipchains.

> On Wed, 2002-09-04 at 14:48, Greg Brown wrote:
>> Sorry if this has been covered recently, I'm still going through all
>> my old  digests.
>>
>> I have two questions:
>>
>> 1.  I am curently using ipchains, is there a good reason to make the
>> switch  to iptables?
>
> Many many reasons. Stateful filtering and connection tracking stand out.
>
>> 2. Does either ipchains or iptables have the ability to filter traffic
>> on an  interface based on MAC address?
>
> iptables does.
>
>> I guess I have three questions.
>>
>> 3.  Is there a good iptables tutorial on-line for people who currently
>> use  ipchains?
>
> Well, I just gave a talk last night at the NCSU LUG on how to build an
> iptables firewall. I'd like to think its a good tutorial. ;)
>
> http://www.linux.ncsu.edu/lug/lectures/firewall/
>
> ~spot
> ---
> Tom "spot" Callaway <tcallawa(a)redhat*com> Red Hat Sales Engineer Sair
> Linux and GNU Certified Administrator (LCA)
> Red Hat Certified Engineer (RHCE)
> GPG: D786 8B22 D9DB 1F8B 4AB7  448E 3C5E 99AD 9305 4260
>
> The words and opinions reflected in this message do not necessarily
> reflect those of my employer, Red Hat, and belong solely to me.
>
> "Immature poets borrow, mature poets steal." --- T. S. Eliot
>
> _______________________________________________
> TriLUG mailing list
>     http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ:
>     http://www.trilug.org/~lovelace/faq/TriLUG-faq.html






More information about the TriLUG mailing list