
Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Typology: Cheat Sheet
1 / 1
This page cannot be seen from the preview
Don't miss anything!

Commands: L โ List all currently inserted rules F / flush โ Delete all rules currently inserted A โ โAppendโ: add a rule to a specific chain
Chains: INPUT โ Chain for packets targeted to your machine FORWARD โ Chain for packets that your machine will route OUTPUT โ Chain for packets that your machine sends out
policy CHAIN DROP/ACCEPT โ Set default behaviour for a chain
Options: d / s โ Filter by destination/source IPs p TCP โ Filter TCP packets dport / sport #/name โ Filter by port # (or service, such as http, sshโฆ) tcp flags ALL FLAG โ Filter by flag. ALL means โinspect all packetsโ, substitute FLAG with the flag you want to filter
m MODULE โ Load an extension (for this lab: string/state) string โpatternโ โ Match โpatternโ in packets algo bm โ Use Boyer-Moore for pattern matching state OPTION โ Filter by connection state. Can be NEW, RELATED, ESTABLISHEDor INVALID
Actions: j DROP/ACCEPT โ Action to take on matched packets