Ping a Specific Port

Question

nsg

Asked: 2011-07-05 05:41:18 +0800 CST2011-07-05 05:41:18 +0800 CST 2011-07-05 05:41:18 +0800 CST

iptables on bridged networking

772

I need some assistance to create a set of iptable rules to route and restrict usage between interfaces in a bridge (br0).

# brctl show
bridge name bridge id               STP enabled     interfaces
br0           8000.002590387da2     no              eth0
                                                    vnet0
                                                    vnet1

I have enabled net.bridge.bridge-nf-call-ip6tables and net.bridge.bridge-nf-call-iptables (for a description of what i need, see: Firewall on a KVM host, prevent access to VM:s).

I'm not skilled at iptables hacking and need some help, or a point in the right direction. Right now I'm not even sure in what table/chain I'm suppose to work against.

2 Answers

Voted

BillThor · Answer 1 · 2011-07-05T05:59:49+08:00

BillThor

2011-07-05T05:59:49+08:002011-07-05T05:59:49+08:00

The Shorewall article on Bridged Firewalls may help.

1

wolfgangsz · Answer 2 · 2011-07-05T06:31:24+08:00

wolfgangsz

2011-07-05T06:31:24+08:002011-07-05T06:31:24+08:00

You should probably read this to get an idea of which rules need to go where. This picture (copied from the Ubuntu wiki) provides a simple yet good overview of how traffic flows through iptables:

enter image description here

1

iptables on bridged networking

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?