The Optimization & Implementation

of Iptables Rules Set on Linux

Presented By :Pooja M. Mehta

ITSNS,GTU – CDAC - BISAG,

Gandhinagar

Contents Abstract

Introduction

Iptables framework

Iptables working

Iptables rule structure

Optimization and realization of rule set

Conclusion

References2Pooja Mehta - ITSNS

3

Abstract

Firewall

Linux – open source

Netfilter / iptables

Pooja Mehta - ITSNS

4

Introduction

Iptables – Packet filter

Operates on the second layer of TCP/IP stack

Pooja Mehta - ITSNS

5

Iptables Framework

Pooja Mehta - ITSNS

6

Iptables Working

Pooja Mehta - ITSNS

7

Iptables Rule Structure iptables [-t <table-name>] <command> <chain-name> <parameter-1> \ <option-1> <parameter-n> <option-n>

Ex. Iptables –P INPUT DROPiptables -D OUTPUT 1

Pooja Mehta - ITSNS

8

Optimization & Realization of Rule Set

Filtering rules

Filtration efficiency

Algorithm

Pooja Mehta - ITSNS

9

Conclusion Eliminate duplication rule set

Improve the efficiency of the system

Reduce the time required to filter data packets

Improve network throughput

Pooja Mehta - ITSNS

10

References Lei-fei, Pei-fei, “The Optimization and

Implementation of Iptables Rules Set on Linux”, Information Science and Control Engineering (ICISCE), 2015

Pooja Mehta - ITSNS

Thank you !!!