niemueller.de::home niemueller.de
Open Software. Open Knowledge.




 
Last modified December 08 2008 17:37:49
IPtables Configuration Webmin Module
IPtables Configuration Webmin Module
Configure an IPtables Firewall via a Web Interface
Introduction
This module creates a configuration file (format defined in the CONF file in the archive) with all rules. Then an executor script opens the configuration file and executes all rules defined in the configuration file.
Like the IPchains Module it has three modes:
  • Newbie: Select one from 5 predefined security levels. This will activate a predefined ruleset. There are two different sets of rulesets, one for a Personal Firewall and one for a Router Firewall (Personal levels not yet defined. If there is anybody out there who uses iptables for a personal firewall and understands iptables is welcome to email me and define the levels)
  • Template: Select from a big list of protocols and directions which traffic should be allowed to pass through the firewall (lots of new protocols supported compared to the IPchains module)
  • Expert: Define the settings for each rule in detail and change everything
Installation
The installation is quite simple: Login to your Webmin as admin (or whatever you called the adminstrative user) and go to the Webmin tab, then choose "Webmin Configuration". Now click on "Webmin Modules". Give the file in the first box (you can choose any installation method, all should work). Hit Install. Now the module is being installed.
Configuration
The first options define where the module shall look for the programs. Automatic will look if the program is in the PATH and if so it will use it. In some cases you may want to define it, for example if you want to use a self-compiled program.
The quick option are for the commands on the startpage. It has a standard builtin, but in some cases you may want to use you own. For example if you want to make a ping with 10 packets. Then you would use "-c 10 HOST". The string HOST is replaced by the hostname when the command is executed. The option "Allow other programs to be used if check for one binary fails" defines, if the module gives an error (with no option to use the other programs) if one binary is missing.
The next option defines this: You have called on of the two functions and now want to use the next, if this option is set to "Yes" the old result will be kept, otherwise it will not be displayed.
The module has some servers for Whois-queries hard-coded, you can define more in the last option as a comma-separated list.
Support
If you have any bugs please send me an email and tell me about. If you have any problems with download or installation of the module, please first read the Download and Install FAQ
Download
It's a gzipped TAR file with an .wbm.gz-extension. (It's distributed under GPL)

Latest Version is 0.91.1
Download iptables-0.91.1.wbm.gz (104845 Bytes)

If you have any problems first read the Download and Install FAQ and then email me.




Top 5 Pages
Wiki
WebLog
SquidGuard Webmin Module
Onager
Link Pile




Palm Software
UniMatrix UniMensa UniSorter
UniChat OHS Mobile Onager


My Bookshelf




Valid XHTML 1.1!

RSS Copyright © 2000-2009 by Tim Niemueller