Author: robert Date: 2011-08-16 17:32:21 -0600 (Tue, 16 Aug 2011) New Revision: 1655
Added: trunk/BOOK/chapter06/iptables.xml Log: Added iptables to chapter 6. Added: trunk/BOOK/chapter06/iptables.xml =================================================================== --- trunk/BOOK/chapter06/iptables.xml (rev 0) +++ trunk/BOOK/chapter06/iptables.xml 2011-08-16 23:32:21 UTC (rev 1655) @@ -0,0 +1,147 @@ +<?xml version="1.0" encoding="ISO-8859-1"?> +<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN" + "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd"; [ + <!ENTITY % general-entities SYSTEM "../general.ent"> + %general-entities; +]> + +<sect1 id="ch-system-iptables" role="wrap"> + <?dbhtml filename="iptables.html"?> + + <sect1info condition="script"> + <productname>iptables</productname> + <productnumber>&iptables-version;</productnumber> + <address>&iptables-url;</address> + </sect1info> + + <title>Iptables-&iptables-version;</title> + + <indexterm zone="ch-system-iptables"> + <primary sortas="a-Iptables">Attr</primary> + </indexterm> + + <sect2 role="package"> + <title/> + + <para>The iptables package contains utilities to administer a firewall</para> + + <segmentedlist> + <segtitle>&buildtime;</segtitle> + <segtitle>&diskspace;</segtitle> + + <seglistitem> + <seg>&iptables-ch6-sbu;</seg> + <seg>&iptables-ch6-du;</seg> + </seglistitem> + </segmentedlist> + + </sect2> + + <sect2 role="installation"> + <title>Installation of Iptables</title> + + <para>Configure Iptables with the following command:</para> + +<screen><userinput remap="configure">./configure --prefix=/usr \ + --bindir=/sbin --sbindir=/sbin --sbindir=/sbin \ + --libdir=/lib --libexecdir=/lib \ + --with-pkgconfigdir=/usr/lib/pkgconfig</userinput></screen> + + <para>Build the package:</para> + +<screen><userinput remap="make">make</userinput></screen> + + <para>This package does not come with a test suite.</para> + + <para>Install the package:</para> + +<screen><userinput remap="install">make install</userinput></screen> + + </sect2> + + + <sect2 id="contents-iptables" role="content"> + <title>Contents of Iptables</title> + + <segmentedlist> + <segtitle>Installed program</segtitle> + <segtitle>Installed libraries</segtitle> + <segtitle>Installed directories</segtitle> + + <seglistitem> + <seg>iptables, iptables-restore, iptables-save, iptables-xml, + iptables-multi, ip6tables, ip6tables-restore, ip6tables-save, and ip6tables-multii</seg> + <seg>libip4tc.so, libip6tc.so, libiptc.so, libxtables.so, and numerous modules in /lib/xtables/</seg> + <seg>/lib/xtables/xtables and /usr/include/libiptc</seg> + </seglistitem> + </segmentedlist> + + <variablelist> + <bridgehead renderas="sect3">Short Descriptions</bridgehead> + <?dbfo list-presentation="list"?> + <?dbhtml list-presentation="table"?> + + <varlistentry id="iptables"> + <term><command>iptables</command></term> + <listitem> + <para>is used to set up, maintain, and inspect the tables of IP + packet filter rules in the Linux kernel. It is a symbolic link to iptables-multi</para> + <indexterm zone="ch-system-iptables iptables"> + <primary sortas="b-iptables">attr</primary> + </indexterm> + </listitem> + </varlistentry> + + <varlistentry id="iptables-restore"> + <term><command>iptables-restore</command></term> + <listitem> + <para>is used to restore IP Tables from data specified on STDIN. Use + I/O redirection provided by your shell to read from a file. It is a symbolic link to iptables-multi</para> + <indexterm zone="ch-system-iptables iptables-restore"> + <primary sortas="b-iptables-restore">iptables-restore</primary> + </indexterm> + </listitem> + </varlistentry> + + <varlistentry id="iptables-save"> + <term><command>iptables-save</command></term> + <listitem> + <para>is used to dump the contents of an IP Table in easily parseable format to STDOUT. + Use I/O-redirection provided by your shell to write to a file. It is a symbolic link to iptables-multi</para> + <indexterm zone="ch-system-iptables iptables-save"> + <primary sortas="b-iptables-save">iptables-save</primary> + </indexterm> + </listitem> + </varlistentry> + + <varlistentry id="iptables-xml"> + <term><command>iptables-xml</command></term> + <listitem> + <para>is used to convert the output of + <command>iptables-save</command> to an XML format. Using the + iptables.xslt stylesheet converts the XML back to the format of + <command>iptables-restore</command>. It is a symbolic link to + iptables-multi</para> + <indexterm zone="ch-system-iptables iptables-xml"> + <primary sortas="b-iptables-xml">iptables-xml</primary> + </indexterm> + </listitem> + </varlistentry> + + <varlistentry id="ip6tables"> + <term><command>ip6tables*</command></term> + <listitem> + <para>are a set of commands for IPV6 that parallel the iptables + commands above. All of these commands are symbolic links to + ip6tables-multi</para> + <indexterm zone="ch-system-iptables ip6tables"> + <primary sortas="b-ip6tables">ip6tables*</primary> + </indexterm> + </listitem> + </varlistentry> + + </variablelist> + + </sect2> + +</sect1> -- http://linuxfromscratch.org/mailman/listinfo/hlfs-book FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
