diff options
| author | Samuel Thibault <samuel.thibault@ens-lyon.org> | 2013-07-29 14:08:59 +0200 |
|---|---|---|
| committer | Samuel Thibault <samuel.thibault@ens-lyon.org> | 2013-07-29 14:09:03 +0200 |
| commit | 8e114bb3aa935b5a730d3ce55547870bb0a04ae9 (patch) | |
| tree | 2bb866e51e74178fbc73e6fd43a4860f9b2b8b11 | |
| parent | 2af9e8eaddec43958638805a42023e5e60899414 (diff) | |
Add firewalling example
| -rw-r--r-- | community/meetings/ghm2013.mdwn | 2 | ||||
| -rw-r--r-- | hurd/translator/eth-filter.mdwn | 23 |
2 files changed, 25 insertions, 0 deletions
diff --git a/community/meetings/ghm2013.mdwn b/community/meetings/ghm2013.mdwn index 4de20c3c..5390ca30 100644 --- a/community/meetings/ghm2013.mdwn +++ b/community/meetings/ghm2013.mdwn @@ -37,6 +37,8 @@ License|/fdl]]."]]"""]] - nsmux, unionmount + - eth-filter + - list of nice translators - netio/socketio - tarfs, cvsfs, xmlfs, mboxfs diff --git a/hurd/translator/eth-filter.mdwn b/hurd/translator/eth-filter.mdwn new file mode 100644 index 00000000..a026b0b9 --- /dev/null +++ b/hurd/translator/eth-filter.mdwn @@ -0,0 +1,23 @@ +[[!meta copyright="Copyright © 2013 Free Software Foundation, Inc."]] + +[[!meta license="""[[!toggle id="license" text="GFDL 1.2+"]][[!toggleable +id="license" text="Permission is granted to copy, distribute and/or modify this +document under the terms of the GNU Free Documentation License, Version 1.2 or +any later version published by the Free Software Foundation; with no Invariant +Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license +is included in the section entitled [[GNU Free Documentation +License|/fdl]]."]]"""]] + +`eth-filter` is a translator that implements a very simple stateless firewal. + +# Source + +[[source_repositories/incubator]], dde + +# Usage: + +For instance, to drop any attempt to access port 22: + + settrans -c /dev/eth0f /hurd/eth-filter -i /dev/eth0 -r "not port 22" + + settrans /servers/socket/2 /hurd/pfinet -i /dev/eth0f ... |