Как отключить iptables ubuntu

Форум русскоязычного сообщества Ubuntu

Страница сгенерирована за 0.042 секунд. Запросов: 23.

• Сайт
• Об Ubuntu
• Скачать Ubuntu
• Семейство Ubuntu
• Новости

• Форум
• Помощь
• Правила

• Документация
• Пользовательская документация
• Официальная документация
• Семейство Ubuntu
• Материалы для загрузки
• Совместимость с оборудованием
• RSS лента

• Сообщество
• Наши проекты
• Местные сообщества
• Перевод Ubuntu
• Тестирование
• RSS лента

© 2012 Ubuntu-ru — Русскоязычное сообщество Ubuntu Linux.
© 2012 Canonical Ltd. Ubuntu и Canonical являются зарегистрированными торговыми знаками Canonical Ltd.

Как запустить / остановить и включить / отключить FirewallD и Iptables Firewall в Linux

Как запустить / остановить и включить / отключить службу FirewallD

If you’re using CentOS/RHEL 7 or Fedora 18+ versions, you should follow below instructions to manage FirewallD service.

Start FirewallD Service

# systemctl start firewalld 

Stop FirewallD Service

# systemctl stop firewalld 

Check the Status of FirewallD

# systemctl status firewalld 

Check the State of FirewallD

# firewall-cmd --state 

As an alternative, you can disable the firewalld service so that it doesn’t apply rules to packets and enable ones needed again.

Disable FirewallD Service

# systemctl disable firewalld 

Enable FirewallD Service

# systemctl enable firewalld 

Mask FirewallD Service

# systemctl mask firewalld 

Кроме того, вы можете замаскировать службу брандмауэра, которая создает символическую ссылку firewall.service на /dev/ null, тем самым отключая службу.

Unmask FirewallD Service

# systemctl unmask firewalld 

This is reverse of masking the service. This removes the symlink of the service created during masking, thus re-enabling the service.

Как запустить / остановить и включить / отключить службу IPtables

On RHEL / CentOS 6/5/4 and Fedora 12-18 iptables firewall comes as pre and later, the iptables service can be installed via:

# yum install iptables-services 

Then, the service can be started, stopped or restarted via following commands:

Start Iptables Service

# systemctl start iptables OR # service iptables start 

Stop Iptables Service

# systemctl stop iptables OR # service iptables stop 

Disable Iptables Service

# systemctl disable iptables Or # service iptables save # service iptables stop 

Enable Iptables Service

# systemctl enable iptables Or # service iptables start 

Check Status of Iptables Service

# systemctl status iptables OR # service iptables status 

On Ubuntu and some other Linux distributions however, ufw is the command which is used to manage the iptables firewall service. Ufw provides an easy interface for the user to handle the iptables firewall service.

Enable Ufw Iptables Firewall

$ sudo ufw enable 

Disable Ufw Iptables Firewall

$ sudo ufw disable 

Check Status of Ufw Iptables Firewall

# sudo ufw status 

However, if you want to list chains in iptables which contains all the rules following command can help you achieve the same:

# iptables -L -n -v

как отключить iptables

для вашего не знаю, так как его название вы не умудрились сообщить.

fghj ★★★★★
( 26.12.04 00:23:57 MSK )

> #rmmod ip_tables
> #rmmof iptables

Смотреть lsmod и вырубать модули которые действительно активны.
Но на самом деле достаточно удалить все правила из всех таблиц:
# iptables -t nat -F
# iptables -t filter -F
# iptables -t mangle -F

unDEFER ★★★★★
( 26.12.04 00:29:53 MSK )
Ответ на: комментарий от anonymous 25.12.04 23:56:43 MSK

Потому что в debian нет такой команды.

Смотри в своем /etc/rc.d название и по названию:

jackill ★★★★★
( 26.12.04 00:34:59 MSK )
Ответ на: комментарий от jackill 26.12.04 00:34:59 MSK

> а нафига
посмотри тему про proftpd — это тоже моя.
Я уже просто не знаю что бы такое сотворить.
аот и хочу iptables вырубить хотя 21 open

kuz ★
( 26.12.04 00:45:35 MSK )
Ответ на: комментарий от kuz 26.12.04 00:45:35 MSK

в смысле тот который 2 темы назад

kuz ★
( 26.12.04 00:48:44 MSK )
Ответ на: комментарий от kuz 26.12.04 00:45:35 MSK

iptables -A INPUT -p tcp -dport 20 -j ACCEPT
iptables -A INPUT -p tcp -dport 21 -j ACCEPT
iptables -A OUTPUT -p tcp -sport 20 -j ACCEPT
iptables -A OUTPUT -p tcp -sport 21 -j ACCEPT

iptables -A INPUT -p udp -dport 20 -j ACCEPT
iptables -A INPUT -p udp -dport 21 -j ACCEPT
iptables -A OUTPUT -p udp -sport 20 -j ACCEPT
iptables -A OUTPUT -p udp -sport 21 -j ACCEPT

P.S. Можно писать не так занудно, забыл -m multiport, что ли, и порты через запятую:

iptables -A INPUT -p udp -m multiport -dport 20,21 -j ACCEPT

How to Disable IPTables on Ubuntu

IPTables is a user-space utility program that allows a system administrator to configure the IP packet filter rules of the Linux kernel firewall. While it’s essential for securing your server, there might be instances where you need to disable it temporarily, such as troubleshooting network issues or setting up a new configuration.

In this guide, we’ll walk you through the steps to disable iptables on Ubuntu.

Let’s get started.

Step 1: Check the Current Status of iptables

Before making any changes, it’s a good practice to check the current status of iptables.

sudo iptables -L -v

This command will list all the current rules set in iptables.

Step 2: Flush All iptables Rules

To disable iptables, you first need to flush or delete all the rules.

sudo iptables -F

This command will flush all the rules from all chains.

See also 14 Tips to Easily Optimize Nginx Performance on Ubuntu

Step 3: Set Default Policies to ACCEPT

After flushing the rules, set the default policies for INPUT, FORWARD, and OUTPUT chains to ACCEPT.

sudo iptables -P INPUT ACCEPT sudo iptables -P FORWARD ACCEPT sudo iptables -P OUTPUT ACCEPT

Step 4: Disable iptables on Boot

To ensure iptables doesn’t start on boot, you can disable the service.

sudo systemctl disable netfilter-persistent

Step 5: Restart the Network Service

After making the changes, restart the network service to apply them.

sudo systemctl restart networking.service

Commands Mentioned

• sudo iptables -L -v – Lists all current iptables rules.
• sudo iptables -F – Flushes all iptables rules.
• sudo iptables -P INPUT ACCEPT – Sets default policy for INPUT chain to ACCEPT.
• sudo systemctl disable netfilter-persistent – Disables iptables on boot.
• sudo systemctl restart networking.service – Restarts the network service.

FAQ

1. Why might someone want to disable iptables? Disabling iptables might be necessary for troubleshooting network-related issues, setting up a new configuration, or when using another firewall solution. However, it’s essential to ensure that the server remains secure during this period.
2. Is it safe to permanently disable iptables? It’s not recommended to permanently disable iptables unless you have another firewall solution in place. iptables is a crucial security tool that protects your server from unauthorized access and attacks.
3. How can I re-enable iptables after disabling it? To re-enable iptables, you can reverse the steps mentioned above. Set the default policies to DROP, apply your desired rules, and enable the netfilter-persistent service to start on boot.
4. What’s the difference between iptables and ufw? iptables is a user-space utility for configuring the IP packet filter rules, while ufw (Uncomplicated Firewall) is a user-friendly frontend for managing iptables. ufw provides a simpler way to manage iptables rules for users unfamiliar with iptables’ syntax.
5. Can I use iptables and ufw simultaneously? While it’s technically possible to use both simultaneously, it’s not recommended. Using both can lead to conflicting rules and unexpected behavior. If you’re using ufw, it’s best to manage all your rules through it.

See also How to Install Traceroute on Linux (Ubuntu, CentOS, RHEL, Fedora)

Conclusion

Disabling iptables on Ubuntu is a straightforward process, but it’s crucial to understand the implications of doing so. While iptables is a powerful tool for managing packet filtering rules, there might be instances where disabling it is necessary.

Always ensure that you have adequate security measures in place when disabling any firewall.

If you’re exploring different hosting solutions, consider reading about Dedicated Server Hosting, VPS Server Hosting, Cloud Hosting, and Shared Hosting to determine the best fit for your needs.

Dimitri Nek

Dimitri is a Linux-wielding geek from Newport Beach and a server optimization guru with over 20 years of experience taming web hosting beasts. Equipped with an arsenal of programming languages and an insatiable thirst for knowledge, Dimitri conquers website challenges and scales hosting mountains with unmatched expertise. His vast knowledge of industry-leading hosting providers allows him to make well-informed recommendations tailored to each client’s unique needs.

Thanks for checking in!

Here you won’t find biased «expert» reviews, forged speed and uptime ratings, deceptive «actual testing» analyses etc. Just plain data backed by real customer reviews, both positive and negative. We’ve been collecting them since 2004.

Nevertheless, some content may include ads and sponsored links. Yeah, passion alone does not pay the rent. This helps us pay for the servers and parsers. Thank you for understanding.