Kutsegula madoko pa Linux

Pin
Send
Share
Send

Kulumikizana kotetezeka kwa maukonde a ma network ndikusinthana kwa chidziwitso pakati pawo kukugwirizana mwachindunji ndi madoko otseguka. Kulumikiza ndi kutumiza kwa magalimoto kumapangidwa kudzera pa doko linalake, ndipo ngati chatsekedwa mudongosolo, sizingatheke kuchita izi. Chifukwa cha izi, ogwiritsa ntchito ena akufuna kutumiza nambala imodzi kapena zingapo pakukhazikitsa kulumikizana kwa chida. Lero tikuwonetsa momwe ntchitoyi imagwirira ntchito makina otengera Linux kernel.

Timatsegula madoko ku Linux

Ngakhale magawo ambiri ali ndi chida cholumikizira ma netiweki mosagwiritsa ntchito, mayankho otere nthawi zambiri samakulolani kuti mukonzekere kutsegula kwa madoko. Malangizo omwe atchulidwa m'nkhaniyi azakhazikitsidwa chifukwa cha pulogalamu yowonjezera yotchedwa Iptables, yankho lakusintha kwawotche wamoto pogwiritsa ntchito mwayi wapamwamba. Mu OS onse omwe mumanga pa Linux, imagwiranso ntchito chimodzimodzi, kupatula kuti lamulo la kukhazikitsa ndi losiyana, koma tikambirana izi pansipa.

Ngati mukufuna kudziwa kuti ndi madoko ati omwe atsegulidwa kale pa kompyuta yanu, mutha kugwiritsa ntchito zida zomangira kapena zowonjezera. Mupeza malangizo atsatanetsatane opeza zambiri zofunikira mu nkhani yathu ina podina ulalo wotsatirawu, ndipo tiyamba kuwunikira pang'onopang'ono madoko otsegulira.

Werengani Zambiri: Kuwona Open Ports ku Ubuntu

Gawo 1: Ikani ma iptables ndikuwona malamulowo

Chida cha Iptables poyamba sichili gawo la opaleshoni, chifukwa chomwe chiyenera kukhazikitsidwa mosadalira chosungira, ndikuti pokhapokha muzigwiritsa ntchito malamulo ndikuwasintha mwanjira iliyonse. Kukhazikitsa sikutenga nthawi yambiri ndipo kumachitika kudzera pa chopendekera chodziwika bwino.

  1. Tsegulani menyu ndikuthamanga "Pokwelera". Mutha kuchita izi pogwiritsa ntchito hotkey wamba. Ctrl + Alt + T.

  2. Pazogawa za Debian kapena Ubuntu, lembanisudo apt kukhazikitsakuyendetsa kukhazikitsa, komanso kumanga kwa Fedora -sudo yum kukhazikitsa iptables. Pambuyo kulowa, kanikizani fungulo Lowani.

  3. Yambitsani ufulu wa olemba wamkulu polemba mawu achinsinsi a akaunti yanu. Chonde dziwani kuti zilembo sizikuwonetsedwa pazakuyika, izi zachitika kuti zitsimikizidwe motetezeka.

  4. Yembekezani kukhazikitsa kuti mumalize ndipo mutha kutsimikizira ntchito ya chida chija poyang'ana mndandanda wokhazikika wa malamulo ogwiritsa ntchitozolemba zachikondi -L.

Monga mukuwonera, kugawa tsopano kuli ndi lamulomapaleudindo woyang'anira zothandizira dzina lomweli. Apanso, tikukumbukira kuti chida ichi chimagwira ngati mizu, ndiye kuti mzerewu uyenera kukhala ndi choyambirirawokonda, ndipo pokhapokha zotsala ndi mfundo zotsutsana.

Gawo 2: Yambitsani Kuyankhulana

Palibe ma doko omwe amagwira ntchito pafupipafupi ngati chida chikuletsa kusinthana kwa chidziwitso pamlingo wa malamulo ake. Kuphatikiza apo, kusowa kwa malamulo ofunikira mtsogolo kumatha kubweretsa zolakwika zosiyanasiyana mukamatumizira, chifukwa chake tikukulimbikitsani kuti mutsatire izi:

  1. Onetsetsani kuti palibe malamulo mu fayilo yosinthika. Ndikwabwino kulembera lamulo kuti lizichotse, koma zikuwoneka ngati:zolemba zachikondi -F.

  2. Tsopano tikuwonjezera lamulo lolowera zofunikira pakompyuta yapakompyuta ndikuyika mzerezolemba zokonda -A INPUT -i lo -j ACCEPT.

  3. Za lamulo lomweli -zolembedwa zachikondi -A OUTPUT -o lo -j ACCEPT- amayang'anira lamulo latsopano lotumiza chidziwitso.

  4. Zimangokhala zowonetsetsa kuti kulumikizana kwadongosolo kwa malamulo omwe ali pamwambapa kuti seva ikhoza kutumiza mapaketi kubwerera. Kuti muchite izi, muyenera kuletsa kulumikizidwa kwatsopano, ndi okalamba kuti mulole. Izi zathekamauthenga okonda -A INPUT -m state --st ESTABLISHED, RELATED -j ACCEPT.

Chifukwa cha magawo omwe ali pamwambapa, mwatsimikiza kutumiza ndi kulandira data molondola, zomwe zimakupatsani mwayi wolumikizana mosavuta ndi seva kapena kompyuta ina. Zimangotsegula madoko omwe izi zimachitika.

Gawo 3: Kutsegula madoko omwe amafunikira

Mukudziwa kale mfundo zomwe malamulo atsopano amawonjezeredwa pakusintha kwa Iptables. Pali zotsutsana zingapo kuti mutsegule madoko ena. Tiyeni tiwone njirayi pogwiritsa ntchito madoko otchuka 22 ndi 80.

  1. Yambitsani cholumikizira ndikuyika malamulo awiri otsatirawa:

    zolemba zachikondi -A INPUT -p tcp --dport 22 -j ACCEPT
    zolemba zokonda -A INPUT -p tcp --dport 80 -j ACCEPT    .

  2. Tsopano onani mndandanda wamalamulo kuti muwonetsetse kuti madoko adatumizidwa bwino. Zogwiritsidwa ntchito pa lamulo lodziwika kalezolemba zachikondi -L.

  3. Mutha kuyiyika yowerengeka ndikuwonetsa zonse pogwiritsa ntchito mfundo yowonjezera, ndiye kuti mzerewu uzikhala monga:zikonda zachikondi -nvL.

  4. Sinthani ndondomekoyi kukhala yofananazokonda zachikondi -P INPUT DROPndipo mutha kuyamba kugwira ntchito mosatalikirana.

M'malo omwe woyang'anira kompyuta adalowetsa kale malamulo ake mu chida, adakonza kutaya mapaketi akafika pamunsi, mwachitsanzo,zolemba zokonda -A INPUT -j DROPmuyenera kugwiritsa ntchito lamulo lina lotsatira:-I INPUT -p tcp --dport 1924 -j ACCEPTpati 1924 - chiwerengero cha doko. Imawonjezera doko lofunikira pachiyambireni tcheni, kenako mapaketiwo satayika.

Kenako mutha kulemba mzere womwewozolemba zachikondi -Lndikuwonetsetsa kuti zonse zakonzedwa molondola.

Tsopano mukudziwa momwe madoko amatumizidwira pa makina ogwiritsira ntchito a Linux ogwiritsa ntchito zowonjezera za iptable monga chitsanzo. Tikukulangizani kuti muzitsatira mizere yomwe imawonekera mukalowetsa malamulo, izi zikuthandizani kuzindikira zolakwika zilizonse mu nthawi ndikuziwachotsa mwachangu.

Pin
Send
Share
Send

Posts Popular

https://eifeg.com 2024