From the course: Complete Guide to Linux Security: Protecting Your Linux Server Environment
Join today to access over 24,300 courses taught by industry experts.
Building the nftables configuration, part 2 - Linux Tutorial
From the course: Complete Guide to Linux Security: Protecting Your Linux Server Environment
Building the nftables configuration, part 2
- So far, the only connectivity we have is SSH. Let's show how to add additional rules so that we can have ICMP for pinging and more functionally DNS. So we'll go to our WN server again and we'll add a new rule to our table and chain. So we'll do an add rule and the table name once again, inet ports_table, name of the chain input. And here's the rule I want to do. It's going to be ICMP. So internet control message protocol, that is the protocol that underlies pings. So ICMP and then the type. And in curly braces, the type I want is echo dash request. So when you actually ping from one computer to another, it's requesting a reply. So it's echo dash request in curly braces and we'll do an accept for that. Press enter, that should add the rule. And I also want to allow replies, otherwise what's the point? So we'll just up arrow that and change request to reply. Press enter for that and we should be good. Let's do another list rule set. And I'm just up arrowing through the history…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
(Locked)
Learning objectives1m 34s
-
(Locked)
Introduction to nftables and the nft command2m 34s
-
(Locked)
nftables setup4m 5s
-
(Locked)
Tables > Chains > Rules2m 31s
-
(Locked)
Building the nftables configuration, part 18m 41s
-
(Locked)
Building the nftables configuration, part 28m 39s
-
Saving and restoring the nftables configurations8m 36s
-
(Locked)
Translating iptables to nftables7m 49s
-
(Locked)
-
-
-
-
-
-