![Moxa V2416-T-LX [36/88] Append or delete rules](/img/pdf.png)
Moxa V2416-T-LX [36/88] Append or delete rules
![Moxa V2416-XPE [36/88] Append or delete rules](/views2/1200428/page36/bg24.png)
V2416 Linux User's Manual Managing Communications
3-12
FORWARD: For packets routed out through the V2416-LX.
PREROUTING: To alter packets as soon as they come in.
POSTROUTING: To alter packets as they are about to be sent out.
Examples:
#iptables –P INPUT DROP
#iptables –P OUTPUT ACCEPT
#iptables –P FORWARD ACCEPT
#iptables –t nat –P PREROUTING ACCEPT
#iptables –t nat –P OUTPUT ACCEPT
#iptables -t nat –P POSTROUTING ACCEPT
In this example, the policy accepts outgoing packets and denies incoming packets.
Append or Delete Rules
Usage:
# iptables [-t table] [-AI] [INPUT, OUTPUT, FORWARD] [-io interface] [-p tcp, udp, icmp, all] [-s
IP/network] [--sport ports] [-d IP/network] [--dport ports] –j [ACCEPT. DROP]
-A: Append one or more rules to the end of the selected chain.
-I: Insert one or more rules in the selected chain as the given rule number.
-i: Name of an interface via which a packet is going to be received.
-o: Name of an interface via which a packet is going to be sent.
-p: The protocol of the rule or of the packet to check.
-s: Source address (network name, host name, network IP address, or plain IP address).
--sport: Source port number.
-d: Destination address.
--dport: Destination port number.
-j: Jump target. Specifies the target of the rules; i.e., how to handle matched packets.
For example, ACCEPT the packet, DROP the packet, or LOG the packet.
Examples:
Example 1: Accept all packets from the lo interface.
# iptables –A INPUT –i lo –j ACCEPT
Example 2: Accept TCP packets from 192.168.0.1.
# iptables –A INPUT –i eth0 –p tcp –s 192.168.0.1 –j ACCEPT
Example 3: Accept TCP packets from Class C network 192.168.1.0/24.
# iptables –A INPUT –i eth0 –p tcp –s 192.168.1.0/24 –j ACCEPT
Example 4: Drop TCP packets from 192.168.1.25.
# iptables –A INPUT –i eth0 –p tcp –s 192.168.1.25 –j DROP
Example 5: Drop TCP packets addressed for port 21.
# iptables –A INPUT –i eth0 –p tcp --dport 21 –j DROP
Example 6: Accept TCP packets from 192.168.0.24 to V2416-LX’s port 137, 138, 139
# iptables –A INPUT –i eth0 –p tcp –s 192.168.0.24 --dport 137:139 –j ACCEPT
Example 7: Log TCP packets that visit V2416-LX’s port 25.
# iptables –A INPUT –i eth0 –p tcp --dport 25 –j LOG
Example 8: Drop all packets from MAC address 01:02:03:04:05:06.
# iptables –A INPUT –i eth0 –p all –m mac --mac-source 01:02:03:04:05:06 –j DROP
Содержание
- First edition april 2011 1
- V2416 linux user s manual 1
- Www moxa com product 1
- Copyright notice 2
- Disclaimer 2
- Technical support contact information 2
- Trademarks 2
- V2416 linux user s manual 2
- Www moxa com support 2
- Table of contents 3
- Introduction 5
- Attention 6
- Device driver 6
- Hardware 6
- Linux kernel 6
- Micro kernel 6
- Overview 6
- Protocol stack 6
- Software specifications 6
- Software components 7
- V2416 linux user s manual introduction 7
- Software configuration 8
- Display on single or multiple outputs 9
- Moxa login root password last login mon jan 22 19 02 16 2007 from 192 68 20 for further information check 9
- Moxa mount o remount rw 9
- Moxa umount 9
- Section device identifier intel corporation mobile 945gm gms 943 940gml express integrated graphics controller 9
- Starting from a vga console 9
- The read only file system 9
- V2416 linux user s manual software configuration 9
- Etc init d gdm star 12
- Moxa etc init d gdm start 12
- Moxa mv etc rc2 d n30gdm etc rc2 d s30gdm 12
- Startup with desktop environment 12
- V2416 linux user s manual software configuration 12
- Connecting from a telnet console 13
- Connecting from an ssh console 13
- V2416 linux user s manual software configuration 13
- Windows users 13
- Adjusting the system time 14
- Linux users 14
- Root bee_notebook root ssh 192 68 27 the authenticity of host 192 68 27 192 68 27 can t be established rsa key fingerprint is 8b ee ff 84 41 25 fc cd 2a f2 92 8f cb 1f 6b 2f are you sure you want to continue connection yes no yes_ 14
- Setting the time manually 14
- V2416 linux user s manual software configuration 14
- Attention 15
- Moxa date hwclock wed dec 16 16 36 12 cst 2009 wed 16 dec 2009 03 38 13 am cst 0 16751 seconds moxa moxa ntpdate time stdtime gov tw 16 dec 03 49 48 ntpdate2510 step time server 220 30 58 2 offset 155905087 84256 sec moxa moxa hwclock w moxa date hwclock wed dec 16 03 51 07 cst 2009 wed 16 dec 2009 03 51 07 am cst 0 16771 seconds moxa 15
- Ntp client 15
- V2416 linux user s manual software configuration 15
- Enabling and disabling daemons 16
- Example shell script for updating the system time periodically 16
- How to run the shell script automatically when the kernel boots up 16
- Updating the time automatically 16
- Setting the run level 18
- Cd etc rc2 d ln s etc root tcps2 s60tcps2 19
- Cron daemon for executing scheduled commands 19
- Ln s etc root tcps2 k30tcps2 19
- Minute hour date month week user command 8 root path to your program 19
- Moxa cd etc rc2 d moxa etc rc2 d moxa etc rc2 d ls s19nfs common s25nfs user server s99showreadyled 19
- Moxa etc rc2 d moxa etc rc2 d ln s root tcps2 release s60tcps2 moxa etc rc2 d ls s19nfs common s25nfs user server s99rmnologin 19
- Moxa rm f etc rc2 d s60tcps2 19
- Moxa umount 19
- S20snmpd s55ssh 19
- S20snmpd s55ssh s99showreadyled 19
- S24pcmcia s60tcps2 19
- S24pcmcia s99rmnologin 19
- Umount 19
- V2416 linux user s manual software configuration 19
- 8 root home fixtime sh 20
- Attention 20
- Bin sh ntpdate time stdtime gov tw hwclock w exit 0 20
- Chmod 755 fixtime sh 20
- Fixtime sh 20
- Inserting a usb storage device into the computer 20
- Moxa mount dev hda1 on type ext2 rw errors remount ro tmpfs on lib init rw type tmpfs rw nosuid mode 0755 proc on proc type proc rw noexec nosuid nodev sysfs on sys type sysfs rw noexec nosuid nodev procbususb on proc bus usb type usbfs rw udev on dev type tmpfs rw mode 0755 tmpfs on dev shm type tmpfs rw nosuid nodev devpts on dev pts type devpts rw noexec nosuid gid 5 mode 620 dev hdb2 on home type ext2 rw nfsd on proc fs nfsd type nfsd rw rpc_pipefs on var lib nfs rpc_pipefs type rpc_pipefs rw dev sda1 on media usb0 type vfat rw noexec nodev sync noatime gid 25 dmask 0007 fmask 0117 dev sdb1 on media usb1 type vfat rw noexec nodev sync noatime gid 25 dmask 0007 fmask 0117 moxa 20
- Moxa mount o remount rw moxa apt get remove usbmount moxa apt get install gnome volume manager moxa umount 20
- V2416 linux user s manual software configuration 20
- Apt installing and removing packages 21
- Attention 21
- Cf automount for v242x kernel sd 1 9 kernels 1 0 1 0 run bin mount dev k media cf n 21
- Checking the linux version 21
- Inserting a compact flash card 21
- Moxa mount o remount rw 21
- Moxa uname a linux moxa 2 0 bpo 686 1 smp fri dec 11 18 12 58 utc 2009 i686 gnu linux moxa 21
- Moxa vi etc apt sources list deb cdrom debian gnu linux 5 a _lenny_ official i386 netinst binary 1 20090817 16 43 lenny main deb cdrom debian gnu linux 5 a _lenny_ official i386 netinst binary 1 20090817 16 43 lenny main 21
- V2416 linux user s manual software configuration 21
- Attention 22
- Deb http ftp us debian org debian lenny main deb src http ftp us debian org debian lenny main deb http security debian org lenny updates main contrib deb src http security debian org lenny updates main contrib deb http volatile debian org debian volatile lenny volatile main deb src http volatile debian org debian volatile lenny volatile main 22
- Moxa apt get install openswan moxa 22
- Moxa apt get remove openswan moxa 22
- Moxa apt get remove openswan purge moxa 22
- Moxa apt get update moxa 22
- Moxa df h filesystem size used avail use mounted on rootfs 1 g 1001m 440m 70 udev 10m 748k 9 m 8 dev dev sda1 1 g 1001m 440m 70 tmpfs 501m 0 501m 0 lib init rw tmpfs 501m 0 501m 0 dev shm none 501m 19m 482m 4 tmp dev sda2 270m 130m 126m 51 home moxa 22
- Moxa umount moxa 22
- V2416 linux user s manual software configuration 22
- Attention 23
- Bin sh case 1 in hibernate suspend echo close ap and tty ports which are opened 23
- Device suspend 23
- Echo operations after serial ports resume exit na esac 23
- Echo operations before serial ports suspend thaw resume echo restart ap 23
- Moxa apt get clean moxa 23
- Moxa pm suspend quirk s3 bios 23
- V2416 linux user s manual software configuration 23
- Etherwake b 00 90 e8 00 d7 07 24
- Moxa ethtool eth0 settings for eth0 supported ports tp supported link modes 10baset half 10baset full 100baset half 100baset full 1000baset full supports auto negotiation yes advertised link modes 10baset half 10baset full 100baset half 100baset full 1000baset full advertised auto negotiation yes speed 100mb s duplex full port twisted pair phyad 0 transceiver internal auto negotiation on supports wake on pumbg wake on ug current message level 0x00000033 51 link detected yes moxa 24
- V2416 linux user s manual software configuration 24
- Wake on lan 24
- Managing communications 25
- Attention 26
- Changing the interfaces configuration file 26
- Changing the network settings 26
- Detecting network interfaces 26
- Adjusting ip addresses with ifconfig 27
- Dynamic ip address using dhcp 27
- Serial port operation mode 27
- Static ip address 27
- Device node dev ttymn n 0 1 2 interface no see following table 28
- Disabling the telnet ftp server 28
- Discard dgram udp wait root bin discard discard stream tcp nowait root bin discard telnet stream tcp nowait root bin telnetd ftp stream tcp nowait root bin ftpd l 28
- Enabling the telnet ftp server 28
- Moxa cd etc 28
- Moxa etc vi inetd conf 28
- Moxa mount o remount rw dev hda1 28
- Moxa setinterface dev ttym0 2 moxa setinterface dev ttym0 now setting is rs422 interface moxa 28
- Telnet ftp server 28
- V2416 linux user s manual managing communications 28
- Dns client 29
- Etc hostname 29
- Etc resolv conf 29
- Moxa etc cat resolv conf resolv conf this file is the resolver configuration file see resolver 5 nameserver 192 68 6 nameserver 168 5 nameserver 140 15 1 nameserver 140 15 36 0 moxa etc 29
- Moxa etc init d hostname sh start 29
- Moxa hostname 29
- Moxa mount o remount rw dev hda1 29
- Moxa umount 29
- Moxa vi etc hostname moxa 29
- V2416 linux user s manual managing communications 29
- Apache web server 30
- Default homepage 30
- Disabling the cgi function 30
- Etc nsswitch conf 30
- Etc nsswitch conf example configuration of gnu name service switch functionality if you have the glibc doc reference and info packages installed try info libc name service switch for information about this file passwd compat group compat shadow compat hosts files dns networks files protocols db files 30
- Services db files ethers db files rpc db files netgroup nis 30
- V2416 linux user s manual managing communications 30
- Attention 31
- Moxa etc init d apache2 restart 31
- Moxa etc vi etc apache2 sites enabled 000 default 31
- Moxa mount o remount rw 31
- Moxa mount o remount rw dev hda1 31
- Moxa umount 31
- Saving web pages to a usb storage device 31
- V2416 linux user s manual managing communications 31
- Vi etc apache2 sites enabled 000 defaul 31
- Attention 33
- Filter table includes three chains 33
- Iptables 33
- Mangle table includes two chains 33
- Nat table includes three chains 33
- Sub tables 33
- V2416 linux user s manual managing communications 33
- Iptables hierarchy 34
- Iptables modules 34
- V2416 linux user s manual managing communications 34
- Attention 35
- Define policy for chain rules 35
- Examples 35
- Lsmod modprobe ip_tables modprobe iptable_filter modprobe iptable_mangle modprobe iptable_nat 35
- Observe and erase chain rules 35
- V2416 linux user s manual managing communications 35
- Append or delete rules 36
- Examples 36
- V2416 linux user s manual managing communications 36
- Attention 37
- Enabling nat at bootup 37
- Nat example 37
- Nat network address translation 37
- Attention 38
- Connecting to a ppp server over a simple dial up connection 38
- Ppp point to point protocol 38
- Connecting to a ppp server over a hard wired link 39
- Pppd connect chat v atdt5551212 connect ogin username word password dev ttys0 115200 debug crtscts modem defaultroute 192 7 39
- Pppd connect chat v atdt5551212 connect user username password password dev ttys0 115200 crtscts modem 39
- Pppd connect chat v noipdefault dev tty 19200 crtscts 39
- Pppd connect chat v user root password root noipdefault dev ttys0 19200 crtscts 39
- V2416 linux user s manual managing communications 39
- Checking the connection 40
- Method 1 pppd dial in with pppd commands 41
- Method 2 pppd dial in with pppd script 41
- Setting up a machine for incoming ppp connections 41
- Attention 42
- Attention the definitions here can allow users to login without a password if you don t use the login option of pppd the mgetty debian package already provides this option make sure you don t change that inbound connections every regular user can use ppp and has to use passwords from etc passwd hostname 42
- Etc inittab moxa umount 42
- Plugin rp pppoe 42
- Received note it is not advisable to use this option with the persist 42
- Secrets for authentication using chap client server secret ip addresses pppoe example if you want to use it you need to unmark it and modify it 42
- Username hinet net password 42
- Username hinet net password userids that cannot use ppp at all check your etc passwd and add any other accounts that should not be able to use pppd guest hostname master hostname root hostname support hostname stats hostname outbound connections 42
- V2416 linux user s manual managing communications 42
- Attention 44
- Inet addr 192 6 2 p t p 129 7 65 mask 255 55 55 inet addr 192 6 2 p t p 129 7 65 mask 255 55 55 44
- Mkdir p home nfs public 44
- Mount t nfs o nolock 192 68 00 home public home nfs public 44
- Nfs network file system client 44
- Ppp0 link encap point to point protocol 44
- Rx packets 33 errors 0 dropped 0 overrun 0 rx packets 33 errors 0 dropped 0 overrun 0 44
- Showmount e host 44
- Snmp query started root jaredrh90 root snmpwalk v 1 c public 192 68 0 28 more rfc1213 mib sysdescr string linux moxa 2 0 bpo 686 1 smp fri dec 11 18 12 58 utc 2009 i686 rfc1213 mib sysobjectid oid rfc1155 smi enterprises 691 2 420 disman event mib sysuptimeinstance timeticks 126176 0 21 01 6 44
- Snmp simple network management protocol 44
- Tx packets 42 errors 0 dropped 0 overrun 0 tx packets 42 errors 0 dropped 0 overrun 0 44
- Up pointopoint running mtu 1500 metric 1 up pointopoint running mtu 1500 metric 1 44
- V2416 linux user s manual managing communications 44
- Attention 45
- Ethernet bridging for private networks on different subnets 45
- Openvpn 45
- Attention 46
- Attention 47
- 68 0 0 255 55 55 u 0 0 0 eth3 48
- 68 0 255 55 55 u 0 0 0 br0 48
- 68 0 255 55 55 u 0 0 0 eth0 48
- 68 0 255 55 55 u 0 0 0 eth2 48
- Attention 48
- Destination gateway genmsk flags metric ref use iface 48
- Killall term openvpn 48
- Ln sf etc init d openvpn etc rc0 d k80openvpn ln sf etc init d openvpn etc rc6 d k80openvpn 48
- Ln sf etc init d openvpn etc rc2 d s16openvpn 48
- Ping 192 68 74 48
- Route add net 192 68 netmask 255 55 55 dev eth0 48
- V2416 linux user s manual managing communications 48
- Ethernet bridging for private networks on the same subnet 49
- Point to the peer remote 192 68 74 dev tap0 secret etc openvpn secrouter key cipher des ede3 cbc auth md5 tun mtu 1500 tun mtu extra 64 ping 40 up etc openvpn tap0 br sh comp lzo 49
- Routed ip 49
- V2416 linux user s manual managing communications 49
- File overview 51
- Hot swapping daemon configuration 51
- Hot swapping function 51
- Mount point usage limit media disk2p1 90 media disk1p1 90 51
- Start echo starting mxhtspd daemon sleep 1 mxhtspd v 51
- V2416 linux user s manual managing communications 51
- Handling an event with hot swapping daemon 52
- Moxa mount rootfs on type rootfs rw none on sys type sysfs rw nosuid nodev noexec relatime none on proc type proc rw nosuid nodev noexec relatime udev on dev type tmpfs rw relatime size 10240k mode 755 dev hda1 on type ext2 ro relatime errors remount ro tmpfs on lib init rw type tmpfs rw nosuid relatime mode 755 usbfs on proc bus usb type usbfs rw nosuid nodev noexec relatime tmpfs on dev shm type tmpfs rw nosuid nodev relatime devpts on dev pts type devpts rw nosuid noexec relatime gid 5 mode 620 ptmxmode 000 none on tmp type tmpfs rw relatime dev hda2 on home type ext2 rw relatime errors continue dev sda1 on media disk2p1 type ext3 rw relatime errors continue data ordered dev sda2 on media disk2p2 type ext3 rw relatime errors continue data ordered dev sdb1 on media disk1p1 type ext3 rw relatime errors continue data ordered dev sdb2 on media disk1p2 type ext3 rw relatime errors continue data ordered 52
- V2416 linux user s manual managing communications 52
- Add parameter if necessary mxhtspd l 0 53
- An example for deploying mxhtspd daemon 53
- Attention 53
- Bin sh file basename 0 num 1 add your commands here home log_application echo file button num is long pressed 53
- Logging the hot swapping daemon message 53
- Moxa etc rc2 d mv n10rsyslog s10rsyslog 53
- The default runlevel id 2 initdefault 53
- Uncomment below lines for mxhtspd with local 0 local0 var log mxhtspd log 53
- V2416 linux user s manual managing communications 53
- Programming guide 55
- Define rs232_mode 0 define rs485_2wire_mode 1 define rs422_mode 2 define rs485_4wire_mode 3 56
- Device api 56
- Man ioctl 56
- Rtc real time clock 56
- V2416 linux user s manual programming guide 56
- Baudrate inaccuracy 57
- Example to get the baudrate 57
- Example to set the baudrate 57
- Special note 57
- Define dio_error_port 1 no such port define dio_error_mode 2 no such mode or state define dio_error_control 3 open or ioctl fail define dio_error_duration 4 the value of duration is not 0 or not in the range 40 duration 3600000 milliseconds 1 hour define dio_error_duration_20ms 5 the value of duration must be a multiple of 20 ms define dio_ok 0 58
- Define dio_high 1 define dio_low 0 58
- Digital i o 58
- V2416 linux user s manual programming guide 58
- Examples 59
- Special note 59
- V2416 linux user s manual programming guide 59
- How the wdt works 60
- Introduction 60
- The user api 60
- V2416 linux user s manual programming guide 60
- Wdt watch dog timer 60
- Define documentation 61
- Examples 61
- Function documentation 61
- Hot swapping hard disk 61
- Special note 61
- V2416 linux user s manual programming guide 61
- Mdm features 62
- V2416 linux user s manual programming guide 62
- V2416 linux user s manual programming guide 63
- System recovery 64
- Attention 65
- Recovery environment 65
- Recovery procedure 65
- Usb port 65
- V2416 linux user s manual system recovery 65
- V2416 lx 65
- V2416 linux user s manual system recovery 66
- Attention 67
- V2416 linux user s manual system recovery 67
- V2416 linux user s manual system recovery 68
- V2416 linux user s manual system recovery 69
- V2416 linux user s manual system recovery 70
- Attention 71
- V2416 linux user s manual system recovery 71
- V2416 linux user s manual system recovery 72
- A software components 73
- Software components 73
- V2416 linux user s manual software components 74
- V2416 linux user s manual software components 75
- V2416 linux user s manual software components 76
- V2416 linux user s manual software components 77
- V2416 linux user s manual software components 78
- V2416 linux user s manual software components 79
- V2416 linux user s manual software components 80
- V2416 linux user s manual software components 81
- V2416 linux user s manual software components 82
- V2416 linux user s manual software components 83
- V2416 linux user s manual software components 84
- V2416 linux user s manual software components 85
- V2416 linux user s manual software components 86
- V2416 linux user s manual software components 87
- V2416 linux user s manual software components 88
Похожие устройства
- Moxa V2416-T-LX Руководство по быстрой установке
- Moxa V2416-XPE Инструкция по эксплуатации
- Moxa V2416-XPE Руководство по аппаратной части
- Moxa V2416-XPE Технические характеристики
- Moxa V2416-XPE Руководство по программной части (Linux)
- Moxa V2416-XPE Руководство по быстрой установке
- Moxa V2416-T-XPE Инструкция по эксплуатации
- Moxa V2416-T-XPE Руководство по аппаратной части
- Moxa V2416-T-XPE Технические характеристики
- Moxa V2416-T-XPE Руководство по программной части (Linux)
- Moxa V2416-T-XPE Руководство по быстрой установке
- Moxa V2416-W7E Инструкция по эксплуатации
- Moxa V2416-W7E Руководство по аппаратной части
- Moxa V2416-W7E Технические характеристики
- Moxa V2416-W7E Руководство по программной части (Linux)
- Moxa V2416-W7E Руководство по быстрой установке
- Moxa V2416-T-W7E Инструкция по эксплуатации
- Moxa V2416-T-W7E Руководство по аппаратной части
- Moxa V2416-T-W7E Технические характеристики
- Moxa V2416-T-W7E Руководство по программной части (Linux)