manual

Obtain and configure the firewall

A packet is data: a sequence of bits. An example: an HTTPS request is stored in one or more packets. netfilter filters incoming and outgoing packets. iptables is considered a firewall; it defines rules, known as chains, for netfilter to filter packets. At minimum, a chain defines the table and target. The table classifies the origin of the packet. Examples of tables are input for incoming packets, and output for outgoing packets. The target is the action taken on the packet. Examples of targets are accept, reject, and drop. As an example, a chain may drop all packets from an ip address. fail2ban generates chains. An example: if an ip address fails 20 ssh login attempts within a minute, fail2ban generates a chain to drop all incoming packets from the ip address.

Required inputs

Instruction set