Translating this iptables command to ipfw

view story

http://serverfault.com – I need to do the following (but I'm on Mac OS X):- iptables -A INPUT -p tcp -s 123.456.789.0 --sport 1234 --tcp-flags RST RST -j DROP So I need to use pfctl (I think? As ipfw is apparently deprecated?) I just need a direct translation of the iptables command to one I can use. Telling me to read the manpages or Google doesn't help, I've already done so and I can't make sense of it. If you must know WHY I want to do this, see here. Thank you! (HowTos)

Submitted by xskl on 10/11/2012

Login or register to post comments
Email this page

Stories similar to Translating this iptables command to ipfw

IPTABLES allow mail with DROP policy [closed] 22 weeks 2 days ago

I'd like to allow mail through iptables and DROP policy but this script doesn't work what it is wrong here:

## FLUSH de reglas iptables -F

iptables -X

iptables -Z

iptables -t nat -F

## policy iptables -P INPUT DROP

iptables -P OUTPUT ACCEPT

iptables -P FORWARD DROP

# localhost iptables -A INPUT -i lo -j ACCEPT

# Allow my ip iptables -A INPUT -s MY_IP -j ACCEPT

# 80 port iptables -A I

Iptables bash script 21 weeks 3 days ago

i'd like to basically drop all packets, but still allow port 22, 80 and 52533. ATM this firewall doesn't allow pinging, or for me to use yum update. How can I add that? Thanks for advice. Also is there an easier way to open port 80?

How to drop packets without using the iptables command? 18 weeks 4 days ago

I'm just wondering is there an easy way to drop packets on RHEL 6.3 without using the iptables command?

I'm looking for an alternative to this:

iptables -A INPUT -p tcp --dport 1234 -j DROP

Many thanks!

iptables question. 24 weeks 3 days ago

I am setting up a new squid daemon to run on my server. I want to make sure that everyone inside my network can access squid but I want to make sure everyone on the internet is blocked.

iptables command not working on RHEL 6.3? 18 weeks 4 days ago

I'm having trouble running iptables using RHEL 6.3.

iptables -A INPUT -p tcp --dport 1234 -j DROP iptables v1.4.7: can't initialize iptables table `filter': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded.

Heres my version of RHEL.

cat /etc/redhat-release Red Hat Enterprise Linux Server release 6.3 (Santiago)

And the kernal version.

una

iptables "host/network not found" with an exclamation mark IP address 15 weeks 4 days ago

I'm trying to add a iptables rule in order to drop any incoming packets except those from a specific IP. Following the manual, I try to run this:

> iptables -t filter -I INPUT -s !12.34.56.78 -p tcp -j DROP

but I get this error:

iptables v1.4.12.1: host/network `!12.34.56.78' not found

The manpages say for -s / --src / --source parameter ...

Iptables rule that accept any kind of packet 1 year 22 weeks ago

I have these drop rules:

iptables -t mangle -P FORWARD DROP iptables -P FORWARD DROP

iptables -t mangle -P INPUT DROP iptables -P INPUT DROP

iptables -t mangle -P OUTPUT DROP iptables -t nat -P OUTPUT DROP iptables -P OUTPUT DROP

iptables -t nat -P PREROUTING DROP iptables -t mangle -P PREROUTING DROP

iptables -t nat -P POSTROUTING DROP iptables -t mangl

OS X 10.8: redirecting locally initiated ssh connections to localhost:22 38 weeks 6 days ago

I need to hack the OS X pf to redirect all ssh connections from an user to this machine.

Iptables blocks outgoing HTTP connection 29 weeks 4 days ago

I've setup IPTables with the following script...

Translating this iptables command to ipfw

Search

Beautiful linux wallpapers

Tags