0 views collected around this technical thread.
This guide explains Linux's built‑in netfilter firewall framework, its five hook points, the relationship between tables and chains, and how to use iptables (and firewalld) to define, view, modify, and persist traffic‑filtering rules, implement NAT, and create custom chains for advanced network security.
This guide explains the concepts, mechanisms, and primary uses of SNAT and DNAT in network address translation, and provides step‑by‑step iptables commands for implementing source and destination address translation in typical networking scenarios.
Learn step‑by‑step how to configure iptables to log all dropped inbound and outbound packets to syslog, including creating a LOGGING chain, setting rate limits, customizing log prefixes, directing logs to a specific file, and interpreting the resulting log entries.
This guide defines firewalls, outlines their classifications, explains iptables' four tables and five chains, details command usage for filtering and NAT, and demonstrates firewalld zone management, providing practical examples and code snippets for Linux network security.
This article explains how to use Ansible’s cron, iptables, and firewalld modules to manage Linux scheduled tasks, firewall rules, and service ports, providing detailed parameter descriptions, practical examples, and tips for reliable automation in system operations.
This article provides a comprehensive overview of Linux's Netfilter framework and its iptables user‑space tool, explaining their hook‑based architecture, core data structures, rule tables and chains, common configuration commands, practical use cases, and both strengths and limitations for network security.
This article provides two Bash scripts: one that automatically detects and blocks IP addresses generating excessive requests to an Nginx server using iptables, and another that backs up all non‑system MySQL databases with timestamped filenames, both designed for easy server operation and maintenance.
This article explains how kube-proxy and CNI plugins cooperate within a Kubernetes cluster to translate Service ClusterIP requests into real Pod IPs, detailing the Netfilter, iptables/ipvs rule configuration, overlay networking modes, and the emerging proxy‑free approaches using eBPF.
This article provides a comprehensive, step-by-step tutorial on checking, installing, editing, and applying iptables firewall rules on a Linux system, including common port allowances, ICMP handling, rule persistence, and startup configuration using command-line examples.
This article presents a comprehensive collection of Bash scripts that perform tasks such as verifying file consistency across servers, scheduled log cleaning, network traffic monitoring, numeric analysis in files, automated FTP downloads, interactive number games, Nginx 502 detection, variable assignments, bulk file renaming, IP address validation, and various system administration operations.
This article introduces iptables, explains its core concepts such as chains, rules, and tables, demonstrates common command‑line operations for displaying, adding, deleting and modifying rules, and presents a real‑world firewall configuration example for securing jump‑servers on CentOS.
When running Jenkins inside a Docker container on a VM, HTTPS requests to accounts.google.com time out due to an MTU mismatch between the host and the container, which can be resolved by adjusting the MSS via iptables or setting a lower MTU for Docker interfaces.
This article explains how Kubernetes routes traffic from a pod to a Service and back to another pod, details the role of kube‑proxy with iptables or ipvs, and discusses how long‑lived connections are managed and potential load‑balancing issues.
This article explains the fundamentals of iptables, detailing how rules, tables, and chains work together to filter packets, the role of NAT, and provides practical command examples for configuring Linux firewalls effectively.
The article investigates a cloud‑vendor Kubernetes isolation feature that inserts iptables DROP rules into a pod’s network namespace, demonstrating how it fully blocks traffic, triggers liveness‑probe restarts, and impacts services depending on replica count and probe configuration, while preserving state only without probes.
This article explains what a Kubernetes Service is, why it is needed, how to create one with a Deployment, and details the internal workings of Service controllers, Endpoints, and kube-proxy using iptables and ipvs modes.
This guide explains how to employ nethogs, iftop, tcpdump, and iptables on a Linux server to identify bandwidth‑hogging processes, capture network packets, and block malicious IPs, providing step‑by‑step commands and usage tips for effective network troubleshooting.
This article introduces a systematic approach for troubleshooting Kubernetes pod network problems, covering common failure models, essential diagnostic tools such as tcpdump, nsenter, paping and mtr, and detailed case studies that illustrate step‑by‑step analysis and resolution techniques.
This article explains the Linux firewall architecture, compares iptables and firewalld, details the netfilter chain and table model, and provides practical commands and examples for configuring, managing, and troubleshooting firewall rules on RHEL systems.
This article introduces a systematic approach to diagnosing Kubernetes pod network issues, classifies common failure types, presents essential tools such as tcpdump, nsenter, paping and mtr, outlines a step‑by‑step troubleshooting workflow, and walks through several real‑world case studies to illustrate the process.