Troubleshooting Linux Firewalls

Description:

Covers Red Hat and SUSE

When something goes wrong with your Linux firewall, you need to fix it—right now. You don't have time for endless newsgroup searches, confusing man pages, emails to the developers... it's an emergency! One book brings together all the step-by-step solutions and proven problem-solving techniques you'll need when the time comes: Troubleshooting Linux® Firewalls.

Authors Michael Shinn and Scott Shinn are among the world's leading firewall experts; they've even been hired to protect computer security at the White House. In this book, they cover every area where Linux firewalls can go wrong: rules and filtering problems, Layer 2/3/4 issues, trouble with individual services, DNS/DHCP failures, even misconfigured VPNs. They also present an easy, start-to-finish troubleshooting methodology that'll help you identify even the newest or most obscure firewall problem fast—and solve it!

Inside, you will find in-depth information on the following areas:

• What you must know about iptables and netfilter to troubleshoot and avoid problems

• Using loggers, sniffers, and other tools to diagnose even the most obscure firewall problems

• Making sure your firewall rules work the way they're supposed to

• Resolving problems with Network Address Translation and IP Forwarding

• Troubleshooting SMTP, Apache, Squid, NFS, FTP, instant messaging, and other Web-based services

• Finding and fixing common problems with IPsec VPN configuration

• Making your firewalls more failure-resistant: recommendations from the experts

If you depend on a Linux firewall, what will you do if it goes down? With Troubleshooting Linux® Firewalls, you can be confident that the solutions are right at hand—so you can sleep at night!

 

SECTION I: GETTING STARTED.

1: Introduction.

2: Getting Started.

3: Local firewall Security.

4: Troubleshooting Methodology.

SECTION II: TOOLS AND INTERNALS.

5: The OSI Model: Start from the Beginning.

6: Netfilter and iptables Overview.

7: Using iptables.

8: A tour of our Collective Toolbox.

9: Diagnostics.

SECTION III: DIAGNOSTICS.

10: Testing your firewall rules (for security!).

11: Layer 2/In-Line Filtering.

12: NAT (Network Address Translation) and IP Forwarding.

13: General IP (Layer 3/Layer 4).

14: SMTP (e-mail).

15: Web Services (Apache and Squid).

16: File Services    (NFS and FTP).

17: Instant Messaging.

18: DNS/DHCP.

19: Virtual Private Networks.

描述：

涵蓋 Red Hat 和 SUSE

當你的 Linux 防火牆出現問題時，你需要立即修復。你沒有時間進行無休止的新聞組搜索、混亂的手冊頁面、開發者的郵件...這是一個緊急情況！這本書將為你提供所有逐步解決方案和經過驗證的問題解決技巧，當問題出現時，你將需要這些技巧：《故障排除 Linux 防火牆》。

作者 Michael Shinn 和 Scott Shinn 是世界領先的防火牆專家，他們甚至被聘請保護白宮的電腦安全。在這本書中，他們涵蓋了 Linux 防火牆可能出錯的每個領域：規則和過濾問題，第 2/3/4 層問題，個別服務的問題，DNS/DHCP 失敗，甚至配置錯誤的 VPN。他們還提供了一種簡單的、從頭到尾的故障排除方法，可以幫助你快速識別最新或最隱晦的防火牆問題，並解決它們！

在書中，你將找到以下領域的詳細信息：

• 
  

  為了排除故障和避免問題，你必須了解 iptables 和 netfilter

  
  


• 
  

  使用日誌記錄器、嗅探器和其他工具來診斷最隱晦的防火牆問題

  
  


• 
  

  確保你的防火牆規則按照預期工作

  
  


• 
  

  解決網絡地址轉換和 IP 轉發的問題

  
  


• 
  

  解決 SMTP、Apache、Squid、NFS、FTP、即時通訊和其他基於 Web 的服務的問題

  
  


• 
  

  查找和修復 IPsec VPN 配置的常見問題

  
  


• 
  

  使你的防火牆更具抗故障能力：專家的建議

  
  

如果你依賴於 Linux 防火牆，如果它出現故障，你將怎麼辦？有了《故障排除 Linux 防火牆》，你可以放心，解決方案就在手邊，這樣你就可以安心睡覺！

 

目錄：

第一部分：入門。

1：介紹。

2：入門。

3：本地防火牆安全。

4：故障排除方法。

第二部分：工具和內部結構。

5：OSI 模型：從頭開始。

6：Netfilter 和 iptables 概述。

<```