iptables Firewall

iptables is a powerful command-line firewall and packet filtering framework for Linux systems. It allows administrators to define rules for controlling network traffic based on IP addresses, ports, protocols, and connection states, providing fine-grained control over system security.

Features of iptables:

• Implements stateful packet filtering for inbound, outbound, and forwarded traffic.
• Supports Network Address Translation (NAT) for port forwarding and masquerading.
• Enables IP-based access control using chains, tables, and rules.
• Provides protection against unauthorized access and network-based attacks.
• Fully CLI-driven and scriptable for automation and infrastructure-as-code workflows.
• Works seamlessly on IP-based environments without requiring domains or databases.

iptables Usage

$ sudo su
$ iptables --version        # Check iptables version
$ iptables -L -n -v         # List active firewall rules
$ iptables -A INPUT -p tcp --dport 22 -j ACCEPT  # Allow SSH traffic
$ iptables -A INPUT -j DROP # Drop all other inbound traffic