Book Description
The Definitive Guide to Building Firewalls with Linux
As the security challenges facing Linux system and network administrators have grown, the security tools and techniques available to them have improved dramatically. In Linux® Firewalls, Fourth Edition, long-time Linux security expert Steve Suehring has revamped his definitive Linux firewall guide to cover the important advances in Linux security.
An indispensable working resource for every Linux administrator concerned with security, this guide presents comprehensive coverage of both iptables and nftables. Building on the solid networking and firewalling foundation in previous editions, it also adds coverage of modern tools and techniques for detecting exploits and intrusions, and much more.
Distribution neutral throughout, this edition is fully updated for today’s Linux kernels, and includes current code examples and support scripts for Red Hat/Fedora, Ubuntu, and Debian implementations. If you’re a Linux professional, it will help you establish an understanding of security for any Linux system, and for networks of all sizes, from home to enterprise.
Inside, you’ll find just what you need to
- Install, configure, and update a Linux firewall running either iptables or nftables
- Migrate to nftables, or take advantage of the latest iptables enhancements
- Manage complex multiple firewall configurations
- Create, debug, and optimize firewall rules
- Use Samhain and other tools to protect filesystem integrity, monitor networks, and detect intrusions
- Harden systems against port scanning and other attacks
- Uncover exploits such as rootkits and backdoors with chkrootkit
Table of Contents
Part I: Packet Filtering And Basic Security Measures
Chapter 1 Preliminary Concepts Underlying Packet-Filtering Firewalls
Chapter 2 Packet-Filtering Concepts
Chapter 3 Iptables: The Legacy Linux Firewall Administration Program
Chapter 4 Nftables: The Linux Firewall Administration Program
Chapter 5 Building And Installing A Standalone Firewall
Part II: Advanced Issues, Multiple Firewalls, And Perimeter Networks
Chapter 6 Firewall Optimization
Chapter 7 Packet Forwarding
Chapter 8 Nat—Network Address Translation
Chapter 9 Debugging The Firewall Rules
Chapter 10 Virtual Private Networks
Part III: Beyond Iptables And Nftables
Chapter 11 Intrusion Detection And Response
Chapter 12 Intrusion Detection Tools
Chapter 13 Network Monitoring And Attack Detection
Chapter 14 Filesystem Integrity
Part IV: Appendices
Appendix A: Security Resources
Appendix B: Firewall Examples And Support Scripts
Appendix C: Glossary
Appendix D: Gnu Free Documentation License
中文:
书名:Linux防火墙:使用nfables及更高版本增强安全性,第4版
使用Linux构建防火墙的权威指南
随着Linux系统和网络管理员面临的安全挑战越来越大,他们可用的安全工具和技术也得到了极大的改进。在……里面 Linux▁▁ Firewalls, Fourth Edition, 长期担任Linux安全专家的Steve Suehring修改了他的权威Linux防火墙指南,以涵盖Linux安全方面的重要进展。
对于每个关心安全的Linux管理员来说,本指南都是必不可少的工作资源,本指南全面介绍了iptable和nftable。在前几个版本坚实的网络和防火墙基础上,它还增加了用于检测攻击和入侵的现代工具和技术的覆盖范围,以及更多。
这个版本在整个发布过程中保持中立,针对当今的Linux内核进行了全面更新,并包含了针对Red Hat/Fedora、Ubuntu和Debian实现的最新代码示例和支持脚本。如果您是Linux专业人士,它将帮助您建立对任何Linux系统以及从家庭到企业的各种规模的网络的安全性的理解。
在里面,你会找到你需要的东西
- 安装、配置和更新运行iptabes或nfables的Linux防火墙
- 迁移到nfables,或利用最新的iptable增强功能
- 管理复杂的多防火墙配置
- 创建、调试和优化防火墙规则
- 使用Samhain和其他工具来保护文件系统完整性、监视网络和检测入侵
- 加强针对端口扫描和其他攻击的系统
- Uncover exploits such as rootkits and backdoors with chkrootkit
目录表
第一部分:数据包过滤和基本安全措施
第1章数据包过滤防火墙的基本概念
第2章-数据包过滤概念
第3章iptabes:旧版Linux防火墙管理程序
第4章Nfables:Linux防火墙管理程序
第5章构建和安装独立防火墙
第II部分:高级问题、多防火墙和外围网络
第6章防火墙优化
第7章数据包转发
第8章NAT-网络地址转换
第9章调试防火墙规则
第十章虚拟专用网络
第三部分:超越iptable和nftable
第11章入侵检测和响应
Chapter 12 Intrusion Detection Tools
Chapter 13 Network Monitoring And Attack Detection
第14章文件系统完整性
Part IV: Appendices
附录A:安全资源
附录B:防火墙示例和支持脚本
Appendix C: Glossary
附录D:GNU免费文档许可证
评论前必须登录!
注册