Differences between version 28 and predecessor to the previous major change of AuckLUGFirewallTutorial.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 28 | Last edited on Tuesday, April 13, 2010 9:03:14 am | by GlenOgilvie | Revert |
| Older page: | version 25 | Last edited on Monday, April 12, 2010 10:41:50 am | by PaulSaunders | Revert |
@@ -1,60 +1,53 @@
__Firewall Tutorial__
In our last meeting, some of us discussed doing something on iptables and firewalls.
-GlenOgilvie is running
a tutorial on iptables and associated tools,
-rather than
a presentation,
so people can
get their hands dirty and learn it
better.
+GlenOgilvie has run
a tutorial on iptables and associated tools on the 12th of April
, 2010.
+It was
a tutorial with some slides
so people could
get their hands dirty and learn better.
-Numbers are limited to 10,
and you should either bring you own laptop, or
-pair up
with someone else who has
.
+People brought their laptops
and could access a virtual machine to play
+play
with firewalls and to better understand firewalls
.
-There will be a bunch of virtual machines setup, so as long as you bring a working
-laptop you can play with firewalls. If you want, you can play with the firewall
-on your laptop as well.
-Each virtual machine would have
iptables, shorewall, ulogd, telnet, tshark,
+Each virtual machine had
iptables, shorewall, ulogd, telnet, tshark,
nmap, ping, and a couple of text based editors like vi, vim, joe and pico.
Laptops should have these tools installed too, as well as wireshark if possible.
+We discovered that the topic is too big to cover in 2 hours, so we started at the
+beginning and covered basic networking, firewall rules and an introduction to shorewall,
+and some information on logging and packet inspection using wireshark.
-The
tutorial would
include nat, snat, dnat (for connection sharing),
-chains and rules to block and allow stuff, plus how to log packet information
-so you can see what is going on. It will include
various tasks to test firewall
+A later
tutorial may
include nat, snat, dnat (for connection sharing),
+discussion around custom
chains and various tasks to test firewall
configurations, with some information on how to make your firewall do these things.
__Prerequisites:__
* some command line experience, including using ssh
* basic understanding of networks, ip addresses, and ports
* can use a text based editor
* a laptop, or pair up with someone who does.
-__RSVP__
-<pre>
-Date: 12 April 2010
-Time: 7pm
-Location: OSS, 162 Grafton Raod, Auckland
-Parking: There is plenty of street parking on Grafton road, and we also have a few visitor car parks.
-</pre>
-If you like the sound of this and can commit to turning up, please
-put your name in the list below. If your plans change and you can't
-make it, please remove your name and email the mailing list.
-
-*NOTE*: This tutorial is going ahead, as we have 10 people RSVPed. I have emailed the mailing list.
-
-have
RSVPed.
+The following people RSVPed and turned up
.
* BrijeshPatel
* NevynHira
* ShaneGeddes
* AnatolyKern
- * Tobias Gerschner
+ * Tobias Gerschner ( no show )
* BoydSal
* PeterArn
* AndrewHill
* LekshmenKannan
- PaulSaunders - Can
't attend
.
+If you attended this, please provide some feedback below:
+
+__Firewall Tutorial Feedback and Suggestions (April 12 2010)__
+
+ "As the presenter, I thought that this tutorial went fairly well.
I realized that there is a lot to cover in 2 hours, so we had to keep it fairly simple and did not cover more than single host based firewalls. We had a few issues with some people having problems connecting to their virtual machines, but it general the lab VM
's worked
. There is interest in a second tutorial covering the more advanced topics. " - GlenOgilvie
+
+
-This tutorial is now full. If you are still
interested, put your name in the list below and I'll contact you if someone can't make it, or
if we get enough interests, will run
a second tutorial.
+The following people would be
interested if we ran
a second beginners
tutorial.
+ * PaulSaunders - (could not make it to the first one)
* Daniel Lewis - djlewis78 at gmail.com
* Seth Fischer
