![Moxa W406-CE [44/74] Append or delete rules](/img/pdf.png)
Moxa W406-CE [44/74] Append or delete rules
![Moxa W406-T-CE [44/74] Append or delete rules](/views2/1200693/page44/bg2c.png)
W315A/325A Linux User's Manual Managing Communications
4-10
Examples:
#iptables –P INPUT DROP
#iptables –P OUTPUT ACCEPT
#iptables –P FORWARD ACCEPT
#iptables –t nat –P PREROUTING ACCEPT
#iptables –t nat –P OUTPUT ACCEPT
#iptables -t nat –P POSTROUTING ACCEPT
In the above examples, the policy accepts outgoing packets and denies incoming packets.
Append or Delete Rules
Usage:
# iptables [-t table] [-AI] [INPUT, OUTPUT, FORWARD] [-io interface] [-p tcp, udp,
icmp, all] [-s IP/network] [--sport ports] [-d IP/network] [--dport ports] –j [ACCEPT.
DROP]
-A: Append one or more rules to the end of the selected chain.
-I: Insert one or more rules in the selected chain as the given rule number.
-i: Name of an interface via which a packet is going to be received.
-o: Name of an interface via which a packet is going to be sent.
-p: The protocol of the rule or of the packet to check.
-s: Source address (network name, host name, network IP address, or plain IP address).
--sport: Source port number.
-d: Destination address.
--dport: Destination port number.
-j: Jump target. Specifies the target of the rules; i.e., how to handle matched packets. For example,
ACCEPT the packet, DROP the packet, or LOG the packet.
Examples:
Example 1: Accept all packets from lo interface.
# iptables –A INPUT –i lo –j ACCEPT
Example 2: Accept TCP packets from 192.168.0.1.
# iptables –A INPUT –i eth0 –p tcp –s 192.168.0.1 –j ACCEPT
Example 3: Accept TCP packets from Class C network 192.168.1.0/24.
# iptables –A INPUT –i eth0 –p tcp –s 192.168.1.0/24 –j ACCEPT
Example 4: Drop TCP packets from 192.168.1.25.
# iptables –A INPUT –i eth0 –p tcp –s 192.168.1.25 –j DROP
Example 5: Drop TCP packets addressed for port 21.
# iptables –A INPUT –i eth0 –p tcp --dport 21 –j DROP
Example 6: Accept TCP packets from 192.168.0.24 to W315A/325A’s port 137, 138, 139
# iptables –A INPUT –i eth0 –p tcp –s 192.168.0.24 --dport 137:139 –j ACCEPT
Example 7: Drop all packets from MAC address 01:02:03:04:05:06.
# iptables –A INPUT –i eth0 –p all –m mac –-mac-source 01:02:03:04:05:06 –j DROP
NOTE
In Example 7, remember to issue the command
#modprobe ipt_mac
first to load module ipt_mac.
NAT
NAT (Network Address Translation) protocol translates IP addresses used on one network to different IP
addresses used on another network. One network is designated the inside network and the other is the outside
network. Typically, the W315A/325A connects several devices on a network and maps local inside network
Содержание
- First edition august 2010 1
- W315a 325a linux user s manual 1
- Www moxa com product 1
- Copyright notice 2
- Disclaimer 2
- Technical support contact information 2
- Trademarks 2
- W315a 325a linux user s manual 2
- Www moxa com support 2
- Table of contents 3
- Introduction 5
- Overview 6
- Software architecture 6
- W315a 325a linux user s manual introduction 6
- Additional information about jffs2 is available at 7
- Journaling flash file system jffs2 7
- W315a 325a linux user s manual introduction 7
- Daemons 8
- Linux tool chain 8
- Software package 8
- Utilities 8
- W315a 325a linux user s manual introduction 8
- Getting started 9
- Attention 10
- Connecting the w315a 325a to a pc 10
- Powering on the w315a 325a 10
- Serial console 10
- W315a 325a linux user s manual getting started 10
- Configuring the ethernet interface 11
- Linux users 11
- Modifying network settings with the serial console 11
- Root localhost root ssh 192 68 7 22 the authenticity of host 192 68 7 22 192 68 7 22 can t be established rsa key fingerprint is 8b ee ff 84 41 25 fc cd 2a f2 92 8f cb 1f 6b 2f are you sure you want to continue connection yes no yes_ 11
- Ssh console 11
- W315a 325a linux user s manual getting started 11
- Windows users 11
- Cd etc network 12
- Configuring the sim card 12
- Etc init d networking restart 12
- Gprs networks 12
- Modifying network settings over the network 12
- Root moxa ifconfig eth0 192 68 7 25 root moxa _ 12
- Setting up the wireless module 12
- Vi interfaces 12
- W315a 325a linux user s manual getting started 12
- Enabling or disabling pin code authentication 13
- Entering the pin code 13
- Verifying the sim card status 13
- W315a 325a linux user s manual getting started 13
- Changing the pin code 14
- Unlocking the sim card 14
- W315a 325a linux user s manual getting started 14
- Configuring your apn list 15
- W315a 325a linux user s manual getting started 15
- Connecting to the internet 16
- Reconnecting to the internet 16
- W315a 325a linux user s manual getting started 16
- Detecting an internet connection error 17
- Disconnecting from the internet 17
- Sending and reading an sms message 17
- W315a 325a linux user s manual getting started 17
- Deleting an sms message 18
- Sd socket for storage expansion 18
- W315a 325a linux user s manual getting started 18
- Checking the flash memory space 19
- Installing the tool chain linux 19
- Mount dev cdrom mnt cdrom sh mnt cdrom tool chain linux install sh 19
- Path usr local arm linux bin path 19
- Test program developing hello c 19
- W315a 325a linux user s manual getting started 19
- Cd example hello make 20
- Cd tmp mkdir example cp r mnt cdrom examples w321 41 15 25 45_ia240 41_uc 7112plus_w315a w325a tmp example 20
- Compiling hello c 20
- Root localhost hello make usr local arm linux bin arm linux gcc o hello release hello c usr local arm linux bin arm linux strip s hello release usr local arm linux bin arm linux gcc ggdb o hello debug hello c root localhost hello _ 20
- W315a 325a linux user s manual getting started 20
- Chmod x hello release hello release 21
- Developing your first application 21
- Ftp 192 68 27 21
- Put hello release 21
- Root moxa hello release hello 21
- Testing environment 21
- Uploading and running the hello program 21
- W315a 325a linux user s manual getting started 21
- Compiling tcps2 c 22
- Uploading and running the tcps2 release program 23
- Summary of the testing procedure 25
- Tcps2 release 25
- Telnet 192 68 27 400 25
- W315a 325a linux user s manual getting started 25
- Managing embedded linux 26
- 68 27 putty 27
- Attention 27
- Dev mtdblock2 8 m 6 m 2 m 75 27
- Dev root 8 m 6 m 1 m 78 dev ram3 1003 k 9 k 943 k 1 dev dev ram0 499 k 18 k 456 k 4 var dev mtdblock3 6 m 504 k 5 m 8 tmp dev mtdblock3 6 m 504 k 5 m 8 home dev mtdblock3 6 m 504 k 5 m 8 etc tmpfs 14 m 0 14 m 0 dev shm root moxa upramdisk root moxa df h filesystem size used available use mounted on 27
- Kversion 27
- Root moxa df h filesystem size used available use mounted on 27
- Root moxa kversion w325a version 1 root moxa 27
- System image backup 27
- System version information 27
- Upgrading the firmware 27
- W315a 325a linux user s manual managing embedded linux 27
- 68 27 putty 29
- Attention 29
- Enabling and disabling daemons 29
- Loading factory defaults 29
- Root moxa cd etc root moxa etc ps pid user vsz stat command 1 root 1248 s init 3 2 root 0 swn ksoftirqd 0 3 root 0 sw events 0 4 root 0 sw khelper 29
- Root moxa mnt ramdisk upgradehfm w3x5a 1 hfm moxa w3x5a upgrade firmware utility version 1 to check source firmware file context the source firmware file conext is ok this step will destroy all your firmware continue y n y now upgrade the file kernel format mtd device dev mtd1 mtd device dev mtd1 erase 128 kibyte 1c0000 100 complete wait to write file compleleted 100 now upgrade the file usrdisk format mtd device dev mtd2 mtd device dev mtd2 erase 128 kibyte 800000 100 complete wait to write file compleleted 100 upgrade the firmware is ok 29
- Upgradehfm 29
- Upgradehfm w3x5a x x x hfm 29
- W315a 325a linux user s manual managing embedded linux 29
- Starting a program automatically at run level 31
- Adjusting the system time 32
- Setting the time manually 32
- Ntp client 33
- Updating the time automatically 33
- 8 root home fixtime sh 34
- Bin sh ntpdate time nist gov hwclock systohc exit 0 34
- Chmod 755 fixtime sh 34
- Cron daemon for executing scheduled commands 34
- Etc cron d 34
- Etc cron d crontab 34
- Etc init d cron start 34
- W315a 325a linux user s manual managing embedded linux 34
- Managing communications 35
- 3 00 putty 36
- Disabling the ftp server 36
- Discard dgram udp wait root bin discard discard stream tcp nowait root bin discard ftp stream tcp nowait root bin ftpd l 36
- Enabling the telnet ftp server 36
- Etc host 36
- Etc hosts 36
- Etc inetd con 36
- Etc nsswitch con 36
- Etc nsswitch conf 36
- Etc resolv con 36
- Nameserver 168 5 36
- Root moxa etc cat resolv conf resolv conf this file is the resolver configuration file see resolver 5 nameserver 192 68 6 nameserver 168 5 nameserver 140 15 1 nameserver 140 15 36 0 root moxa etc 36
- Telnet ftp 36
- W315a 325a linux user s manual managing communications 36
- Etc apache conf httpd con 37
- Home httpd cgi bin 37
- Home httpd htdocs 37
- Home httpd htdocs index htm 37
- W315a 325a linux user s manual managing communications 37
- Web service apache 37
- Installing php for apache web server 38
- Iptables 41
- W315a 325a linux user s manual managing communications 41
- Lsmod modprobe ip_tables modprobe iptable_filter 42
- W315a 325a linux user s manual managing communications 42
- Define policy for chain rules 43
- Examples 43
- Iptables f iptables x iptables z 43
- Iptables l n 43
- Iptables t tables fxz 43
- Iptables t tables l n 43
- Iptables t tables p input output forward prerouting output postrouting accept drop 43
- Modprobe 43
- Modprobe iptable_filter 43
- Observe and erase chain rules 43
- W315a 325a linux user s manual managing communications 43
- Append or delete rules 44
- Examples 44
- Iptables a input i eth0 p all m mac mac source 01 02 03 04 05 06 j drop 44
- Iptables a input i eth0 p tcp dport 21 j drop 44
- Iptables a input i eth0 p tcp s 192 68 24 j accept 44
- Iptables a input i eth0 p tcp s 192 68 4 dport 137 139 j accept 44
- Iptables a input i eth0 p tcp s 192 68 5 j drop 44
- Iptables a input i eth0 p tcp s 192 68 j accept 44
- Iptables a input i lo j accept 44
- Iptables p input drop iptables p output accept iptables p forward accept iptables t nat p prerouting accept iptables t nat p output accept iptables t nat p postrouting accept 44
- Iptables t table ai input output forward io interface p tcp udp icmp all s ip network sport ports d ip network dport ports j accept drop 44
- Modprobe ipt_mac 44
- W315a 325a linux user s manual managing communications 44
- Dev null 45
- Enabling nat at bootup 45
- Iptables t nat a postrouting o eth0 j snat to source 192 68 27 45
- Iptables t nat a postrouting o eth0 s 192 68 24 j masquerade 45
- Modprobe ip_conntrack 45
- Modprobe ip_tables 45
- Modprobe ipt_masquerade 45
- Modprobe iptable_filter 45
- Modprobe iptable_nat 45
- Nat example 45
- Proc sys net ipv4 ip_forward 45
- W315a 325a linux user s manual managing communications 45
- Dial up service ppp 46
- Example 1 connecting to a ppp server over a simple dial up connection 46
- Atdt5551212 47
- Connect 47
- Crtscts 47
- Defaultroute 47
- Example 2 connecting to a ppp server over a hard wired link 47
- How to check the connection 47
- Ifconfig 47
- Ogin username word password 47
- Pppd connect chat v noipdefault dev ttym0 19200 crtscts 47
- Pppd connect chat v user root password root noipdefault dev ttym0 19200 crtscts 47
- W315a 325a linux user s manual managing communications 47
- Netstat nr 48
- Ping z z z z 48
- Pppd dev ttym0 115200 crtscts modem 192 68 6 192 68 6 48
- Pppd dev ttym0 115200 crtscts modem 192 68 6 192 68 6 login auth 48
- Setting up a machine for incoming ppp connections 48
- W315a 325a linux user s manual managing communications 48
- Plugin pppoe 49
- Username hinet net password 49
- W315a 325a linux user s manual managing communications 49
- Nameserver 168 5 nameserver 139 75 0 0 50
- Nameserver ip_addr_of_first_dns_server nameserver ip_addr_of_second_dns_server 50
- Pppd eth0 50
- W315a 325a linux user s manual managing communications 50
- Configuring the options for pppd 51
- File etc ppp peers chtgprs dev ttys1 modem port used 115200 speed defaultroute use the cellular network for the default route noipdefault usepeerdns use the dns servers from the remote network nodetach keep pppd in the foreground nocrtscts hardware flow control lock lock the serial port noauth don t expect the modem to authenticate itself local don t use carrier detect or data terminal ready persist demand modem debug use the next two lines if you receive the dreaded messages no response to n echo requests serial link appears to be disconnected connection terminated lcp echo failure 4 lcp echo interval 65535 connect bin chat v f etc chatscripts chtgprs connect 51
- Gprs connection 51
- W315a 325a linux user s manual managing communications 51
- Configuring the at commands 52
- Example selecting the radio band 52
- Nfs network file system 52
- Ok at wmbs x 52
- Timeout 10 abort busy abort no answer abort error say starting gprs connect script n get the modem s attention and reset it atz e0 no echo v1 english result codes ok ate0v1 set access point name apn say setting apn n ok at cgdcont 1 ip internet dial the number abort no carrier say dialing n ok atd 99 1 connect 52
- W315a 325a linux user s manual managing communications 52
- 68 27 putty 53
- Example 53
- Mkdir p home nfs public mount t nfs nfs_server ip directory mount point 53
- Mount t nfs 192 68 00 home public home nfs public 53
- Root moxa bin df h filesystem size used available use mounted on dev mtdblock2 8 m 6 m 2 m 75 53
- Setting up the w315a 325a as an nfs client 53
- Smtpclient help 53
- Smtpclient s test f sender company com s ip_address receiver company com mail body message 53
- W315a 325a linux user s manual managing communications 53
- W315a 325a linux user s manual managing communications 56
- Development tool chains 57
- Arm linu 58
- Arm linux gcc 58
- Arm linux gcc o example wall g o2 example c arm linux strip s example arm linux gcc ggdb o example debug example c 58
- Compiling an application 58
- Export path usr local arm linux bin path 58
- Fefora core 1 2 58
- I386 linux 58
- Linux tool chain 58
- Mount dev cdrom mnt cdrom sh mnt cdrom tool chain linux w321 41 15 25 45_ia240 41_uc 7112plus_w315a w 325a linux install 1 sh 58
- Steps for installing the linux tool chain 58
- W315a 325a linux user s manual development tool chains 58
- B main 59
- Cd my_work_directory myfilesystem testprograms 59
- Ddd debugger arm linux gdb hello debug 59
- Gdbserver 59
- Gdbserver 192 68 42 2000 hello debug process hello debug created pid 38 59
- On line debugging with gdb 59
- Remote debugging using 192 68 9 2000 59
- Target remote 192 68 9 2000 59
- W315a 325a linux user s manual development tool chains 59
- Programmer s guide 60
- Before programming your embedded system 61
- Caution required when using file systems 61
- Device api 61
- Flash memory map 61
- Include moxadevice 61
- Int ioctl int d int request input int d open device node return file handle int request argument in or out 61
- Man ioctl 61
- Using a ram file system instead of a flash file system 61
- W315a 325a linux user s manual programmer s guide 61
- All arm linux gcc o xxxx xxxx c lmoxalib 62
- Buzzer 62
- How to enable the wdt 62
- Include linux rtc 62
- Include moxadevic 62
- Include sys kd 62
- Int ioctl fd rtc_rd_time struct rtc_time time 62
- Int ioctl fd rtc_set_time struct rtc_time time 62
- Introduction 62
- Ioctl fd kdmktone unsigned int arg 62
- Link moxalib 62
- Rtc real time clock 62
- The user api 62
- W315a 325a linux user s manual programmer s guide 62
- Wdt watch dog timer 62
- Example 1 63
- Int main int argc char argv int fd fd swtd_open if fd 0 printf open swatchdog device fail n 63
- Special note 63
- User application examples 63
- W315a 325a linux user s manual programmer s guide 63
- Example 2 64
- Example for setting the baudrate 65
- Baudrate error 66
- C library 66
- Example for getting the baudrate 66
- Gprs sim sms 66
- Special note 66
- W315a 325a linux user s manual programmer s guide 67
- W315a 325a linux user s manual programmer s guide 68
- W315a 325a linux user s manual programmer s guide 69
- W315a 325a linux user s manual programmer s guide 70
- Binencryptor yourprogram abigkey 71
- Inconsistency detected by ld so dynamic link h 62 elf_get_dynamic_info assertion bad dynamic tag failed 71
- Segmentation fault 71
- Setkey 71
- Setkey abigkey 71
- Software lock 71
- A system commands 72
- System commands 72
- Common linux utility commands 73
- Editor 73
- File manager 73
- Network 73
- Process 73
- W315a 325a linux user s manual system commands 73
- Special moxa utilities 74
- W315a 325a linux user s manual system commands 74
Похожие устройства
- Moxa W406-CE Руководство по работе с утилитой Moxa Device Manager
- Moxa W406-T-CE Инструкция по эксплуатации
- Moxa W406-T-CE Руководство по аппаратной части
- Moxa W406-T-CE Технические характеристики
- Moxa W406-T-CE Руководство по программной части
- Moxa W406-T-CE Руководство по работе с утилитой Moxa Device Manager
- Moxa ISD-1110-T Инструкция по эксплуатации
- Moxa ISD-1110-T Технические характеристики
- Moxa ISD-1130-T Инструкция по эксплуатации
- Moxa ISD-1130-T Технические характеристики
- Moxa ISD-1210-T Инструкция по эксплуатации
- Moxa ISD-1210-T Технические характеристики
- Moxa ISD-1230-T Инструкция по эксплуатации
- Moxa ISD-1230-T Технические характеристики
- Moxa A52/220V DB9 Инструкция по эксплуатации
- Moxa A52/220V DB9 Технические характеристики
- Moxa A52/220V DB25 Инструкция по эксплуатации
- Moxa A52/220V DB25 Технические характеристики
- Moxa A53/220V DB9 Инструкция по эксплуатации
- Moxa A53/220V DB9 Технические характеристики