diff options
Diffstat (limited to 'security/firewall_ex')
| -rw-r--r-- | security/firewall_ex/pres_ex_firewall.tex | 48 |
1 files changed, 24 insertions, 24 deletions
diff --git a/security/firewall_ex/pres_ex_firewall.tex b/security/firewall_ex/pres_ex_firewall.tex index e6bc755..7e8a444 100644 --- a/security/firewall_ex/pres_ex_firewall.tex +++ b/security/firewall_ex/pres_ex_firewall.tex @@ -25,7 +25,7 @@ \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} mkdir ex_ipt cd ex_ipt @@ -36,7 +36,7 @@ iptables -X iptables -F iptables -Z \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -54,7 +54,7 @@ iptables -Z \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} iptables -P INPUT DROP iptables -P OUTPUT DROP @@ -63,7 +63,7 @@ iptables-save > step1 iptables -F iptables-restore < step1 \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -82,7 +82,7 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # New chain :LOGDROP - [0:0] @@ -93,7 +93,7 @@ iptables-restore < step1 -A INPUT -i eth0 -j LOGDROP -A OUTPUT -o eth0 -j LOGDROP \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -109,13 +109,13 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # loopback -A INPUT -i lo -j ACCEPT -A OUTPUT -o lo -j ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -130,13 +130,13 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # DNS -A OUTPUT -p udp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT -A INPUT -p udp -m state --state ESTABLISHED -j ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -151,7 +151,7 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # PING limited accept -A INPUT -p icmp --icmp-type 0 -m limit --limit 2/s -j ACCEPT @@ -162,7 +162,7 @@ iptables-restore < step1 -A OUTPUT -p icmp --icmp-type 8 -m limit --limit 2/s -j ACCEPT -A OUTPUT -p icmp -j DROP \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -177,7 +177,7 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # Allow established connections in and out -A INPUT -m state --state ESTABLISHED -j ACCEPT @@ -187,7 +187,7 @@ iptables-restore < step1 -A OUTPUT -p udp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT # -A INPUT -p udp -m state --state ESTABLISHED -j ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -203,14 +203,14 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # LOGNEW_ACCEPT Chain :LOGNEW_ACCEPT - [0:0] -A LOGNEW_ACCEPT -m state --state NEW -j LOG --log-prefix "New: " -A LOGNEW_ACCEPT -j ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -224,13 +224,13 @@ iptables-restore < step1 \pause \begin{beamerboxesrounded}[shadow=true]{Solution:} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # DNS -A OUTPUT -p udp --dport 53 --sport 1024:65535 -m state --state NEW,ESTABLISHED \ -j LOGNEW_ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{beamerboxesrounded} \end{frame} @@ -239,7 +239,7 @@ iptables-restore < step1 \begin{frame}[fragile] \frametitle{Full example with Ping, DNS, and SSH} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # Generated by iptables-save v1.4.14 on Sat Apr 6 19:47:41 2013 *filter @@ -257,13 +257,13 @@ iptables-restore < step1 -A LOGNEW_ACCEPT -m state --state NEW -j LOG --log-prefix "New: " -A LOGNEW_ACCEPT -j ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{frame} % ---------------------------- \begin{frame}[fragile] \frametitle{Full example with Ping, DNS, and SSH} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # loopback -A INPUT -i lo -j ACCEPT @@ -281,13 +281,13 @@ iptables-restore < step1 -A INPUT -m state --state ESTABLISHED -j ACCEPT -A OUTPUT -m state --state ESTABLISHED -j ACCEPT \end{verbatim} -\end{tiny} +\end{scriptsize} \end{frame} % ---------------------------- \begin{frame}[fragile] \frametitle{Full example with Ping, DNS, and SSH} -\begin{tiny} +\begin{scriptsize} \begin{verbatim} # DNS -A OUTPUT -p udp --dport 53 --sport 1024:65535 -m state --state NEW,ESTABLISHED \ @@ -307,7 +307,7 @@ iptables-restore < step1 COMMIT # Completed on Sat Apr 6 19:47:41 2013 \end{verbatim} -\end{tiny} +\end{scriptsize} \end{frame} % ---------------------------- |