Quick Reference

Home
Alpine Linux Boot Process
libinput on Alpine Linux
who on Alpine
ALSA Config
Android Hacking
Android Load apkx File
Audio Stream Fu
Audio Recording (simple)
AWK
BASH quick ref
Benchmark with fio
BlackBerry as a Modem
BlackBerry Video Encoding
Building libcurl on Windows with VS
Building QEMU Images for Alpine Linux
for use with libvirt and terraform
Building TI MSP430 GCC
Certificate and Key Handling
Chart Drawing
Currency Converter
Custom Bootable Alpine Linux
Custom Alpine Kernel
Colourspace Conversion
Compile FMS from Source
Courier IMAP Server
Datasheets and Manuals
Deduplication of Files
Deleting Old Devices
Delphi 7 Dynamic Linking
Delphi Compiler Warnings
Desktop Capture with FFMPEG
X11
Desktop Capture in Sway
Dovecot IMAP
Dovecot Replication
Docker HowTo (Simple Setup)
Remove Untagged Docker Images
Docker Xvfb Alpine Howto
Docker Storage
DomainKey Identified Mail with Exim
DRBD Over OpenVPN
Eclipse and Jetty
Eclipse Themes
Edge Detection
Electronics
Emailing
ESP8266 Get Started
ESP8266 OpenSDK
Exchange 2010 and Lighttpd
Exim Process and Forward Incoming Mail
Exim with Dovecot
FFmpeg Webcam and v4l2 stuff
flickr image from file name
Force Video Output
KMS/FB and Weston
Fonts
Freenet Routing Fu
Flushing Filesystem Buffers
GDB in Windows
Gentoo eudev and udev
Gentoo omxplayer
Gentoo on Raspberry Pi
Gentoo initramfs
Gentoo Java Problems
Gentoo Stage4
Gentoo Update (portage)
Gentoo VirtualBox Install
git Quick Reference
git Workflow
GNUplot Curve Fitting
GNUplot Heart
GNUplotting
Quick Reference
GnuPG Simple
Hen*Plus
ImageMagick
Quick Reference
InspIRCd on Gentoo
Install Gentoo with Hyper-V
iproute2
iptables
iptables bwmon
IPv6 in IPv6 Tunnels STUB
IPv6 Setups STUB
ircclient
irssi
Java Anti-aliasing
Jetty JSP 9.2/9.3 Error
Jetty JSP 9.4 Error
LDAP Searching
and binding on Linux
Logging in Java
LVM Mount on Gentoo
LVM Howto Rev 2
Video File Montage Creation
MPlayer play section of file
Install macOS X on Mac Pro
Maven for Java Development
MPlayer v4l Snapshots
mpv Quick Reference
MSP430 I2C
msys2 Home Modification
mtu Sizes
Multi Homed Hosts and ARP
Multiple RDP Sessions
nginx and cgit
Oneliners
Oukitel C8 Hacking
GNU Parted Simple tutorial
PinePhone Modem
PinePhone Sleeping
Piping for msmtp

PixivUtil2 Install
powersave.sh
qemu PCI Passthrough
qemu USB Passthrough
Quick VMs with QEMU
Reset Password in Windows
Routing Traffic in Windows
rpcontinued.xpi for Pale Moon
Screen Sharing with Sway
sed and grep
sfdisk howto
Shell and File Descriptors
Spring Security Upgrade from 3 to 4
Strong Host Model for Linux
SQLite3 Compile DLL with VS2010
SSL and Lighttpd
std::string to std::wstring and back
Sway IPC with swaymsg
Terminal Codes and socat
Traffic Control (tc)
In-depth with background and quirky routing and networking configuration
Traffic Control Again
Simpler method using ifb
UEFI Booting from Shell
Update Own Number with AT Commands
Videos, Interesting
VirtualBox to QEMU
Quick start guide
Visual Studio Reminders
whatsmeow on Alpine in Docker
Word and VBA Header Protection
wpa_cli
X11 TrackMan Marble
X11 Programming

Useful `iptables` Information

Many a nerd has written an article or two about iptables but I thought I would write a few pages, I don't want to feel left out.

iptables will increase your network security!

You remember Mr McKittrick and Paul, I think, from WarGames? Unfortunately I cannot take the credit for this cool idea... it was on a blog by dediserve that is not available anymore. I thought it would be a shame to lose this masterpiece so I recreated it :-).

Visualising the IP filtering mechanism

This diagram is just fantastic to help you diagnose problems and create your rules. I do not know who created it but it is in one of the Linux documentation project documents I think, if I find a link I will put it here.

Interacting with iptables

The iptables command is how we interact with IPv4 iptables. To look at rules for IPv6 iptables (if you have the tool installed and your kernel has IPv6 support) the command is ip6tables.

gre and iptables

I use a Raspberry Pi for routing some traffic and I wanted to get my PPTP VPN for work working over the Raspberry Pi router. This took me longer than I thought because GRE packets are not handled like I thought they would be. Anyway to get this working one must add the MASQUERADE match as you would normally:

Chain POSTROUTING
  432691 28991316 MASQUERADE  all  --  *      ppp0    0.0.0.0/0            0.0.0.0/0

And load some modules into your kernel:

Module                  Size  Used by
nf_nat_pptp             2444  0
nf_nat_proto_gre        1311  1 nf_nat_pptp
nf_conntrack_pptp       4172  1 nf_nat_pptp
nf_conntrack_proto_gre     3803  1 nf_conntrack_pptp
ip_gre                 10648  0
gre                     1633  1 ip_gre
ip_tunnel              13258  1 ip_gre

I don't know if you actually need ALL those modules but nf_conntrack_proto_gre looks quite important!

Lazy Ben...

Until I have some time to update this page, please see an interesting article on the same thing (or similar) for routing a specific user's traffic via a dedicated routing table on my Freenet Routing Fu page.

Useful iptables commands

Last updated 29 December 2016