Configuration du noyau :
J'utilise iptables de manière relativement simple et je n'utilise que la table "filter".
Networking options --->
[*] Network packet filtering framework (Netfilter) --->
[*] Advanced netfilter configuration
Core Netfilter Configuration --->
<M> Netfilter connection tracking support
<M> FTP protocol support
<M> H.323 protocol support
<M> IRC protocol support
<M> NetBIOS name service protocol support
<M> SANE protocol support
{M} Netfilter Xtables support (required for ip_tables)
<M> LOG target support
<M> "connbytes" per-connection counter match support
<M> "connlimit" match support
<M> "conntrack" connection tracking match support
<M> "helper" match support
<M> "iprange" address range match support
<M> "limit" match support
<M> "mac" address match support
<M> "multiport" Multiple port match support
<M> "pkttype" packet type match support
<M> "recent" match support
<M> "time" match support
IP: Netfilter Configuration --->
<M> IPv4 connection tracking support (required for NAT)
<M> IP tables support (required for filtering/masq/NAT)
<M> Packet filtering
<M> REJECT target support
Installer iptables :
# emerge iptables
Exemple de
mini firewall.
