IPsec und die Firewall: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(Die Seite wurde neu angelegt: „{{#drawio:ipsec-firewall}}“) |
|||
| Zeile 1: | Zeile 1: | ||
| + | [[Kategorie:IPsec]] | ||
{{#drawio:ipsec-firewall}} | {{#drawio:ipsec-firewall}} | ||
| + | |||
| + | = iptables = | ||
| + | |||
| + | <syntaxhighlight lang="bash"> | ||
| + | iptables -A INPUT -i $WANDEV -p esp -j ACCEPT | ||
| + | iptables -A OUTPUT -i $WANDEV -p esp -j ACCEPT | ||
| + | iptables -A FORWARD -i $WANDEV -o $LANDEV -m policy --dir in --pol ipsec -j ACCEPT | ||
| + | iptables -A FORWARD -i $LANDEV -o $WANDEV -m policy --dir out --pol ipsec -j ACCEPT | ||
| + | </syntaxhighlight> | ||
| + | |||
| + | = nftables = | ||
Version vom 18. September 2024, 20:50 Uhr
![Bearbeiten](javascript:editDrawio("286349212", "ipsec-firewall.drawio.png", "png", false, false, false, true, "https://embed.diagrams.net")){kind=link}
iptables
iptables -A INPUT -i $WANDEV -p esp -j ACCEPT
iptables -A OUTPUT -i $WANDEV -p esp -j ACCEPT
iptables -A FORWARD -i $WANDEV -o $LANDEV -m policy --dir in --pol ipsec -j ACCEPT
iptables -A FORWARD -i $LANDEV -o $WANDEV -m policy --dir out --pol ipsec -j ACCEPT