iptables \u662f\u4e00\u6b3e\u9632\u706b\u5899\uff0c\u5728\u5927\u591a\u6570 Linux \u7cfb\u7edf\u7684\u7f51\u7edc\u5b89\u5168\u4e2d\u626e\u6f14\u7740\u81f3\u5173\u91cd\u8981\u7684\u89d2\u8272\u3002\u867d\u7136\u8bb8\u591a iptables \u6559\u7a0b\u90fd\u6559\u4f60\u5982\u4f55\u521b\u5efa\u9632\u706b\u5899\u89c4\u5219\u6765\u4fdd\u62a4\u670d\u52a1\u5668\uff0c\u4f46\u672c\u6587\u5219\u4fa7\u91cd\u4e8e\u9632\u706b\u5899\u7ba1\u7406\u7684\u53e6\u4e00\u4e2a\u65b9\u9762\uff1a\u89c4\u5219\u7684\u5217\u51fa\u548c\u5220\u9664\u3002.<\/p>\n
\u672c\u6559\u7a0b\u5c06\u4ecb\u7ecd\u5982\u4f55\u6267\u884c\u4ee5\u4e0b iptables \u4efb\u52a1\uff1a<\/p>\n
\u672c\u6559\u7a0b\u5047\u8bbe\u60a8\u4f7f\u7528\u7684\u662f\u5df2\u5b89\u88c5 iptables \u547d\u4ee4\u7684 Linux \u670d\u52a1\u5668\uff0c\u5e76\u4e14\u60a8\u7684\u7528\u6237\u62e5\u6709 sudo \u6743\u9650\u3002\u5982\u679c\u60a8\u5728\u521d\u59cb\u8bbe\u7f6e\u65b9\u9762\u9700\u8981\u5e2e\u52a9\uff0c\u8bf7\u53c2\u9605 Ubuntu 20.04 \u670d\u52a1\u5668\u521d\u59cb\u8bbe\u7f6e\u6307\u5357\u3002.<\/p>\n
\u6211\u4eec\u5148\u6765\u770b\u770b\u5982\u4f55\u5217\u51fa\u89c4\u5219\u3002\u67e5\u770b\u5df2\u6fc0\u6d3b\u7684 iptables \u89c4\u5219\u6709\u4e24\u79cd\u4e0d\u540c\u7684\u65b9\u5f0f\uff1a\u4ee5\u8868\u683c\u5f62\u5f0f\u6216\u4ee5\u89c4\u5219\u89c4\u8303\u5217\u8868\u5f62\u5f0f\u3002\u4e24\u79cd\u65b9\u6cd5\u63d0\u4f9b\u7684\u4fe1\u606f\u5927\u81f4\u76f8\u540c\uff0c\u53ea\u662f\u683c\u5f0f\u4e0d\u540c\u3002.<\/p>\n
\u8981\u6309\u89c4\u8303\u5217\u51fa\u6240\u6709\u6d3b\u52a8\u7684 iptables \u89c4\u5219\uff0c\u8bf7\u8fd0\u884c\u5e26\u6709 -S \u9009\u9879\u7684 iptables \u547d\u4ee4\uff1a<\/p>\n
sudo iptables -S<\/code><\/pre>\n<\/div>\n\nOutput\r\n-P INPUT DROP\r\n-P FORWARD DROP\r\n-P OUTPUT ACCEPT\r\n-N ICMP\r\n-N TCP\r\n-N UDP\r\n-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT\r\n-A INPUT -i lo -j ACCEPT\r\n-A INPUT -m conntrack --ctstate INVALID -j DROP\r\n-A INPUT -p udp -m conntrack --ctstate NEW -j UDP\r\n-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m conntrack --ctstate NEW -j TCP\r\n-A INPUT -p icmp -m conntrack --ctstate NEW -j ICMP\r\n-A INPUT -p udp -j REJECT --reject-with icmp-port-unreachable\r\n-A INPUT -p tcp -j REJECT --reject-with tcp-reset\r\n-A INPUT -j REJECT --reject-with icmp-proto-unreachable\r\n-A TCP -p tcp -m tcp --dport 22 -j ACCEPT\r\n...<\/code><\/pre>\n<\/div>\n\u5982\u60a8\u6240\u89c1\uff0c\u8f93\u51fa\u7ed3\u679c\u4e0e\u521b\u5efa\u8fd9\u4e9b\u89c4\u5219\u65f6\u4f7f\u7528\u7684\u547d\u4ee4\u5b8c\u5168\u76f8\u540c\uff0c\u53ea\u662f\u7701\u7565\u4e86\u4e4b\u524d\u7684 iptables \u547d\u4ee4\u3002\u5982\u679c\u60a8\u66fe\u7ecf\u4f7f\u7528\u8fc7 iptables-persistent \u6216 iptables save \u547d\u4ee4\uff0c\u90a3\u4e48\u8fd9\u4e0e iptables \u89c4\u5219\u914d\u7f6e\u6587\u4ef6\u7684\u914d\u7f6e\u65b9\u5f0f\u4e5f\u7c7b\u4f3c\u3002.<\/p>\n
\u5217\u51fa\u7279\u5b9a\u94fe\u6761<\/h2>\n
\u5982\u679c\u8981\u5c06\u8f93\u51fa\u9650\u5236\u4e3a\u7279\u5b9a\u94fe\uff08INPUT\u3001OUTPUT\u3001TCP \u7b49\uff09\uff0c\u53ef\u4ee5\u5728\u9009\u9879\u540e\u76f4\u63a5\u6307\u5b9a\u94fe\u540d\u79f0\u3002 -S<\/code> \u4f8b\u5982\uff0c\u8981\u663e\u793a TCP \u94fe\u4e2d\u7684\u6240\u6709\u89c4\u5219\uff0c\u8bf7\u8fd0\u884c\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n\nsudo iptables -S TCP<\/code><\/pre>\n<\/div>\n\nOutput\r\n-N TCP\r\n-A TCP -p tcp -m tcp --dport 22 -j ACCEPT<\/code><\/pre>\n<\/div>\n\u73b0\u5728\u8ba9\u6211\u4eec\u6765\u770b\u53e6\u4e00\u79cd\u67e5\u770b\u6d3b\u52a8 iptables \u89c4\u5219\u7684\u65b9\u6cd5\uff0c\u5373\u4ee5\u89c4\u5219\u8868\u7684\u5f62\u5f0f\u67e5\u770b\u3002.<\/p>\n
\u8868\u683c\u4e2d\u7684\u89c4\u5219\u5217\u8868<\/h2>\n
\u4ee5\u8868\u683c\u5f62\u5f0f\u5217\u51fa iptables \u89c4\u5219\u6709\u52a9\u4e8e\u6bd4\u8f83\u4e0d\u540c\u89c4\u5219\u3002\u8981\u4ee5\u8868\u683c\u5f62\u5f0f\u8f93\u51fa\u6240\u6709\u6d3b\u52a8\u7684 iptables \u89c4\u5219\uff0c\u8bf7\u8fd0\u884c\u5e26\u6709 -L \u9009\u9879\u7684 iptables \u547d\u4ee4\uff1a<\/p>\n
\nsudo iptables -L<\/code><\/pre>\n<\/div>\n\u8fd9\u5c06\u751f\u6210\u6240\u6709\u5f53\u524d\u89c4\u5219\uff0c\u5e76\u6309\u94fe\u8fdb\u884c\u6392\u5e8f\u3002.<\/p>\n
\u5982\u679c\u8981\u5c06\u8f93\u51fa\u9650\u5236\u4e3a\u7279\u5b9a\u94fe\uff08INPUT\u3001OUTPUT\u3001TCP \u7b49\uff09\uff0c\u53ef\u4ee5\u5728 -L \u9009\u9879\u540e\u76f4\u63a5\u6307\u5b9a\u94fe\u540d\u79f0\u3002.<\/p>\n
\u6211\u4eec\u6765\u770b\u4e00\u4e2a\u8f93\u5165\u94fe\u7684\u4f8b\u5b50\uff1a<\/p>\n
\nsudo iptables -L INPUT<\/code><\/pre>\n<\/div>\n\nOutput\r\nChain INPUT (policy DROP)\r\ntarget prot opt source destination\r\nACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED\r\nACCEPT all -- anywhere anywhere\r\nDROP all -- anywhere anywhere ctstate INVALID\r\nUDP udp -- anywhere anywhere ctstate NEW\r\nTCP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK\/SYN ctstate NEW\r\nICMP icmp -- anywhere anywhere ctstate NEW\r\nREJECT udp -- anywhere anywhere reject-with icmp-port-unreachable\r\nREJECT tcp -- anywhere anywhere reject-with tcp-reset\r\nREJECT all -- anywhere anywhere reject-with icmp-proto-unreachable<\/code><\/pre>\n<\/div>\n\u8f93\u51fa\u7684\u7b2c\u4e00\u884c\u663e\u793a\u94fe\u7684\u540d\u79f0\uff08\u672c\u4f8b\u4e2d\u4e3a INPUT\uff09\uff0c\u540e\u8ddf\u5176\u9ed8\u8ba4\u7b56\u7565\uff08DROP\uff09\u3002\u4e0b\u4e00\u884c\u5305\u542b\u8868\u4e2d\u6bcf\u4e00\u5217\u7684\u6807\u9898\uff0c\u4ee5\u53ca\u94fe\u89c4\u5219\u3002\u8ba9\u6211\u4eec\u56de\u987e\u4e00\u4e0b\u6bcf\u4e2a\u6807\u9898\u7684\u542b\u4e49\uff1a<\/p>\n
\n- \u76ee\u6807\uff1a\u5982\u679c\u6570\u636e\u5305\u7b26\u5408\u67d0\u6761\u89c4\u5219\uff0c\u76ee\u6807\u5c06\u6307\u5b9a\u5982\u4f55\u5904\u7406\u8be5\u6570\u636e\u5305\u3002\u4f8b\u5982\uff0c\u6570\u636e\u5305\u53ef\u4ee5\u88ab\u63a5\u53d7\u3001\u4e22\u5f03\u3001\u8bb0\u5f55\uff0c\u6216\u8005\u53d1\u9001\u5230\u53e6\u4e00\u4e2a\u94fe\u4ee5\u4e0e\u66f4\u591a\u89c4\u5219\u8fdb\u884c\u6bd4\u8f83\u3002.<\/li>\n
- prot\uff1a\u534f\u8bae\uff0c\u4f8b\u5982 TCP\u3001UDP\u3001ICMP \u6216 all<\/li>\n
- \u9009\u9879\uff1a\u6b64\u5217\u5f88\u5c11\u4f7f\u7528\uff0c\u663e\u793a IP \u9009\u9879<\/li>\n
- \u6765\u6e90\uff1a\u6d41\u91cf\u7684\u6e90 IP \u5730\u5740\u6216\u5b50\u7f51\uff0c\u6216\u4efb\u4f55\u4f4d\u7f6e<\/li>\n
- \u76ee\u6807\u5730\u5740\uff1a\u6d41\u91cf\u7684\u76ee\u6807 IP \u5730\u5740\u6216\u5b50\u7f51\uff0c\u6216\u4efb\u4f55\u4f4d\u7f6e<\/li>\n<\/ul>\n
\u6700\u540e\u4e00\u5217\uff08\u672a\u6807\u6ce8\uff09\u663e\u793a\u89c4\u5219\u7684\u9009\u9879\u3002\u8fd9\u90e8\u5206\u5305\u542b\u89c4\u5219\u4e2d\u672a\u5728\u524d\u9762\u51e0\u5217\u4e2d\u663e\u793a\u7684\u4efb\u4f55\u5185\u5bb9\uff0c\u4f8b\u5982\u6e90\u7aef\u53e3\u548c\u76ee\u6807\u7aef\u53e3\uff0c\u4ee5\u53ca\u6570\u636e\u5305\u8fde\u63a5\u7684\u72b6\u6001\u7b49\u7b49\u3002.<\/p>\n
\u663e\u793a\u5305\u88f9\u6570\u91cf\u548c\u603b\u5927\u5c0f<\/h2>\n
\u5217\u51fa iptables \u89c4\u5219\u65f6\uff0c\u53ef\u4ee5\u663e\u793a\u5339\u914d\u6bcf\u6761\u89c4\u5219\u7684\u6570\u636e\u5305\u6570\u91cf\u548c\u6570\u636e\u5305\u603b\u5927\u5c0f\uff08\u4ee5\u5b57\u8282\u4e3a\u5355\u4f4d\uff09\u3002\u8fd9\u5728\u60f3\u8981\u5927\u81f4\u4e86\u89e3\u54ea\u4e9b\u89c4\u5219\u5339\u914d\u54ea\u4e9b\u6570\u636e\u5305\u65f6\u975e\u5e38\u6709\u7528\u3002\u8981\u5b9e\u73b0\u8fd9\u4e00\u70b9\uff0c\u8bf7\u540c\u65f6\u4f7f\u7528 -L \u548c -v \u9009\u9879\u3002.<\/p>\n
\u4f8b\u5982\uff0c\u8ba9\u6211\u4eec\u518d\u6b21\u4f7f\u7528 -v \u9009\u9879\u6765\u770b\u4e00\u4e0b INPUT \u94fe\uff1a<\/p>\n
\nsudo iptables -L INPUT -v<\/code><\/pre>\n<\/div>\n\nOutput\r\nChain INPUT (policy DROP 0 packets, 0 bytes)\r\npkts bytes target prot opt in out source destination\r\n284K 42M ACCEPT all -- any any anywhere anywhere ctstate RELATED,ESTABLISHED\r\n0 0 ACCEPT all -- lo any anywhere anywhere\r\n0 0 DROP all -- any any anywhere anywhere ctstate INVALID\r\n396 63275 UDP udp -- any any anywhere anywhere ctstate NEW\r\n17067 1005K TCP tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,ACK\/SYN ctstate NEW\r\n2410 154K ICMP icmp -- any any anywhere anywhere ctstate NEW\r\n396 63275 REJECT udp -- any any anywhere anywhere reject-with icmp-port-unreachable\r\n2916 179K REJECT all -- any any anywhere anywhere reject-with icmp-proto-unreachable\r\n0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:ssh ctstate NEW,ESTABLISHED<\/code><\/pre>\n<\/div>\n\u8bf7\u6ce8\u610f\uff0c\u5217\u8868\u73b0\u5728\u591a\u4e86\u4e24\u5217\uff0c \u5305<\/code> \u548c \u5b57\u8282<\/code> \u8fd9\u662f\u3002.<\/p>\n\u65e2\u7136\u60a8\u5df2\u7ecf\u77e5\u9053\u5982\u4f55\u4ee5\u4e0d\u540c\u7684\u65b9\u5f0f\u5217\u51fa\u6d3b\u52a8\u7684\u9632\u706b\u5899\u89c4\u5219\uff0c\u90a3\u4e48\u8ba9\u6211\u4eec\u770b\u770b\u5982\u4f55\u91cd\u7f6e\u6570\u636e\u5305\u548c\u5b57\u8282\u8ba1\u6570\u5668\u3002.<\/p>\n
\u91cd\u7f6e\u6570\u636e\u5305\u6570\u91cf\u548c\u603b\u5927\u5c0f<\/h2>\n
\u5982\u679c\u60a8\u60f3\u6e05\u9664\u6216\u6e05\u96f6\u89c4\u5219\u7684\u6570\u636e\u5305\u548c\u5b57\u8282\u8ba1\u6570\u5668\uff0c\u8bf7\u4f7f\u7528 -Z \u9009\u9879\u3002\u91cd\u542f\u540e\uff0c\u8fd9\u4e9b\u8ba1\u6570\u5668\u4e5f\u4f1a\u91cd\u7f6e\u3002\u5982\u679c\u60a8\u60f3\u67e5\u770b\u670d\u52a1\u5668\u662f\u5426\u63a5\u6536\u5230\u7b26\u5408\u73b0\u6709\u89c4\u5219\u7684\u65b0\u6d41\u91cf\uff0c\u8fd9\u5c06\u975e\u5e38\u6709\u7528\u3002.<\/p>\n
\u8981\u6e05\u9664\u6240\u6709\u94fe\u548c\u89c4\u5219\u7684\u8ba1\u6570\u5668\uff0c\u8bf7\u4f7f\u7528\u8be5\u9009\u9879\u3002 -Z<\/code> \u5355\u72ec\u4f7f\u7528\uff1a<\/p>\n\nsudo iptables -Z<\/code><\/pre>\n<\/div>\n\u8981\u6e05\u9664\u7279\u5b9a\u94fe\u4e2d\u6240\u6709\u89c4\u5219\u7684\u8ba1\u6570\u5668\uff0c\u8bf7\u4f7f\u7528\u8be5\u9009\u9879\u3002 -Z<\/code> \u4f7f\u7528\u5e76\u6307\u5b9a\u94fe\u3002\u4f8b\u5982\uff0c\u8981\u6e05\u9664\u94fe\u8ba1\u6570\u5668\u3002 \u8f93\u5165<\/code> \u8fd0\u884c\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n\nsudo iptables -Z INPUT<\/code><\/pre>\n<\/div>\n\u5982\u679c\u8981\u6e05\u9664\u7279\u5b9a\u89c4\u5219\u7684\u8ba1\u6570\u5668\uff0c\u8bf7\u6307\u5b9a\u94fe\u540d\u79f0\u548c\u89c4\u5219\u7f16\u53f7\u3002\u4f8b\u5982\uff0c\u8981\u6e05\u9664\u94fe\u4e2d\u7b2c\u4e00\u6761\u89c4\u5219\u7684\u8ba1\u6570\u5668\uff0c \u8f93\u5165<\/code>\u8fd0\u884c\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n\nsudo iptables -Z INPUT 1<\/code><\/pre>\n<\/div>\n\u65e2\u7136\u60a8\u5df2\u7ecf\u77e5\u9053\u5982\u4f55\u91cd\u7f6e iptables \u6570\u636e\u5305\u548c\u5b57\u8282\u8ba1\u6570\u5668\uff0c\u90a3\u4e48\u8ba9\u6211\u4eec\u6765\u770b\u770b\u53ef\u4ee5\u7528\u6765\u5220\u9664\u5b83\u4eec\u7684\u4e24\u79cd\u65b9\u6cd5\u3002.<\/p>\n
\u6839\u636e\u89c4\u8303\u5220\u9664\u89c4\u5219<\/h2>\n
\u5220\u9664 iptables \u89c4\u5219\u7684\u4e00\u79cd\u65b9\u6cd5\u662f\u6307\u5b9a\u8981\u5220\u9664\u7684\u89c4\u5219\u3002\u4e3a\u6b64\uff0c\u60a8\u53ef\u4ee5\u8fd0\u884c\u5e26\u6709 `-D` \u9009\u9879\u7684 `iptables` \u547d\u4ee4\uff0c\u5e76\u5728\u5176\u540e\u8f93\u5165\u89c4\u5219\u540d\u79f0\u3002\u5982\u679c\u60a8\u60f3\u4f7f\u7528\u6b64\u65b9\u6cd5\u5220\u9664\u89c4\u5219\uff0c\u53ef\u4ee5\u4f7f\u7528 `iptables -S` \u547d\u4ee4\u67e5\u770b\u89c4\u5219\u5217\u8868\u7684\u8f93\u51fa\u4ee5\u83b7\u53d6\u5e2e\u52a9\u3002.<\/p>\n
\u4f8b\u5982\uff0c\u5982\u679c\u60a8\u60f3\u5220\u9664\u4e22\u5f03\u65e0\u6548\u8f93\u5165\u6570\u636e\u5305\u7684\u89c4\u5219\uff08-A INPUT -m conntrack \u2013ctstate INVALID -j DROP\uff09\uff0c\u60a8\u53ef\u4ee5\u8fd0\u884c\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n
\nsudo iptables -D INPUT -m conntrack --ctstate INVALID -j DROP<\/code><\/pre>\n<\/div>\n\u8bf7\u6ce8\u610f\uff0c\u6b64\u5904\u5e94\u7701\u7565\u7528\u4e8e\u6307\u793a\u89c4\u5219\u5728\u521b\u5efa\u65f6\u7684\u4f4d\u7f6e\u7684 -A \u9009\u9879\u3002.<\/p>\n
\u57fa\u4e8e\u94fe\u548c\u6570\u5b57\u7684\u5220\u9664\u89c4\u5219<\/h2>\n
\u53e6\u4e00\u79cd\u5220\u9664 iptables \u89c4\u5219\u7684\u65b9\u6cd5\u662f\u6309\u94fe\u548c\u884c\u53f7\u5220\u9664\u3002\u8981\u6307\u5b9a\u89c4\u5219\u7684\u884c\u53f7\uff0c\u8bf7\u4ee5\u8868\u683c\u5f62\u5f0f\u5217\u51fa\u89c4\u5219\uff0c\u5e76\u6dfb\u52a0 --line-numbers \u9009\u9879\uff1a<\/p>\n
\nsudo iptables -L --line-numbers<\/code><\/pre>\n<\/div>\n\nOutput\r\nChain INPUT (policy DROP)\r\nnum target prot opt source destination\r\n1 ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED\r\n2 ACCEPT all -- anywhere anywhere\r\n3 DROP all -- anywhere anywhere ctstate INVALID\r\n4 UDP udp -- anywhere anywhere ctstate NEW\r\n5 TCP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK\/SYN ctstate NEW\r\n6 ICMP icmp -- anywhere anywhere ctstate NEW\r\n7 REJECT udp -- anywhere anywhere reject-with icmp-port-unreachable\r\n8 REJECT tcp -- anywhere anywhere reject-with tcp-reset\r\n9 REJECT all -- anywhere anywhere reject-with icmp-proto-unreachable\r\n10 ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ctstate NEW,ESTABLISHED<\/code><\/pre>\n<\/div>\n\u8fd9\u4f1a\u5c06\u884c\u53f7\u6dfb\u52a0\u5230\u4e0e\u6807\u9898\u5173\u8054\u7684\u6bcf\u4e2a\u89c4\u5219\u884c\u4e2d\u3002 \u6570\u5b57<\/code> \u5df2\u663e\u793a\u3002.<\/p>\n\u786e\u5b9a\u8981\u5220\u9664\u7684\u89c4\u5219\u540e\uff0c\u8bb0\u4e0b\u94fe\u53f7\u548c\u89c4\u5219\u884c\u53f7\u3002\u7136\u540e\u8fd0\u884c\u547d\u4ee4 `iptables -D`\uff0c\u540e\u8ddf\u94fe\u53f7\u548c\u89c4\u5219\u884c\u53f7\u3002.<\/p>\n
\u4f8b\u5982\uff0c\u5982\u679c\u6211\u4eec\u60f3\u8981\u79fb\u9664\u4e22\u5f03\u65e0\u6548\u6570\u636e\u5305\u7684\u5165\u7ad9\u89c4\u5219\uff0c\u6211\u4eec\u4f1a\u53d1\u73b0\u89c4\u5219 3 \u4f4d\u4e8e INPUT \u94fe\u4e2d\u3002\u56e0\u6b64\uff0c\u6211\u4eec\u9700\u8981\u8fd0\u884c\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n
\nsudo iptables -D INPUT 3<\/pre>\n<\/div>\n\u65e2\u7136\u60a8\u5df2\u7ecf\u77e5\u9053\u5982\u4f55\u5220\u9664\u9632\u706b\u5899\u89c4\u5219\uff0c\u90a3\u4e48\u8ba9\u6211\u4eec\u6765\u770b\u770b\u5982\u4f55\u6e05\u9664\u89c4\u5219\u94fe\u3002.<\/p>\n
\u95ea\u73b0\u94fe\u6761<\/h2>\n
iptables \u63d0\u4f9b\u4e86\u79fb\u9664\u94fe\u4e2d\u6240\u6709\u89c4\u5219\uff08\u5373\u5237\u65b0\u94fe\uff09\u7684\u65b9\u6cd5\u3002\u672c\u8282\u5c06\u4ecb\u7ecd\u591a\u79cd\u5b9e\u73b0\u65b9\u5f0f\u3002.<\/p>\n
\u51b2\u6d17\u94fe\u6761<\/h5>\n
\u8981\u5237\u65b0\u7279\u5b9a\u94fe\uff08\u8fd9\u5c06\u5220\u9664\u94fe\u4e2d\u7684\u6240\u6709\u89c4\u5219\uff09\uff0c\u53ef\u4ee5\u4f7f\u7528 -F \u6216\u7b49\u6548\u7684 -flush \u9009\u9879\u4ee5\u53ca\u8981\u5237\u65b0\u7684\u94fe\u540d\u79f0\u3002.<\/p>\n
\u4f8b\u5982\uff0c\u8981\u5220\u9664\u94fe\u4e2d\u7684\u6240\u6709\u89c4\u5219 \u8f93\u5165<\/code>\u8fd0\u884c\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n\nsudo iptables -F INPUT<\/code><\/pre>\n<\/div>\n\u95ea\u70c1\u6240\u6709\u94fe\u6761<\/p>\n
\u8981\u6e05\u9664\u6240\u6709\u94fe\uff08\u5373\u5220\u9664\u6240\u6709\u9632\u706b\u5899\u89c4\u5219\uff09\uff0c\u53ef\u4ee5\u4f7f\u7528 -F \u9009\u9879\u6216\u5176\u7b49\u6548\u9009\u9879 -flush\uff1a<\/p>\n
\nsudo iptables -F<\/code><\/pre>\n<\/div>\n\u6e05\u9664\u6240\u6709\u89c4\u5219\uff0c\u79fb\u9664\u6240\u6709\u94fe\uff0c\u5e76\u63a5\u53d7\u6240\u6709\u89c4\u5219\u3002<\/h2>\n
\u672c\u8282\u5c06\u5411\u60a8\u5c55\u793a\u5982\u4f55\u6e05\u9664\u6240\u6709\u9632\u706b\u5899\u89c4\u5219\u3001\u8868\u548c\u94fe\uff0c\u5e76\u5141\u8bb8\u6240\u6709\u7f51\u7edc\u6d41\u91cf\u3002.<\/p>\n
\u9996\u5148\uff0c\u5c06\u6bcf\u4e2a\u5185\u90e8\u94fe\u7684\u9ed8\u8ba4\u7b56\u7565\u8bbe\u7f6e\u4e3a ACCEPT\u3002\u8fd9\u6837\u505a\u7684\u4e3b\u8981\u76ee\u7684\u662f\u4e3a\u4e86\u786e\u4fdd\u60a8\u4e0d\u4f1a\u901a\u8fc7 SSH \u88ab\u9501\u5b9a\u5728\u670d\u52a1\u5668\u4e4b\u5916\uff1a<\/p>\n
\nsudo iptables -P INPUT ACCEPT\r\nsudo iptables -P FORWARD ACCEPT\r\nsudo iptables -P OUTPUT ACCEPT<\/code><\/pre>\n<\/div>\n\u7136\u540e\u5237\u65b0 NAT \u8868\u548c Mangle \u8868\uff0c\u6e05\u9664\u6240\u6709\u94fe\uff08-F\uff09\uff0c\u5e76\u5220\u9664\u6240\u6709\u975e\u9ed8\u8ba4\u94fe\uff08-X\uff09\uff1a<\/p>\n
\nsudo iptables -t nat -F\r\nsudo iptables -t mangle -F\r\nsudo iptables -F\r\nsudo iptables -X<\/code><\/pre>\n<\/div>\n\u60a8\u7684\u9632\u706b\u5899\u73b0\u5728\u5c06\u5141\u8bb8\u6240\u6709\u7f51\u7edc\u6d41\u91cf\u3002\u5982\u679c\u60a8\u73b0\u5728\u5217\u51fa\u60a8\u7684\u89c4\u5219\uff0c\u60a8\u4f1a\u53d1\u73b0\u6ca1\u6709\u4efb\u4f55\u89c4\u5219\uff0c\u53ea\u5269\u4e0b\u4e09\u4e2a\u9ed8\u8ba4\u94fe\uff08INPUT\u3001FORWARD \u548c OUTPUT\uff09\u3002.<\/p>\n
\u7ed3\u679c<\/h2>\n
\u5b8c\u6210\u672c\u6559\u7a0b\u540e\uff0c\u60a8\u5df2\u7ecf\u4e86\u89e3\u4e86\u5982\u4f55\u5217\u51fa\u548c\u5220\u9664 iptables \u9632\u706b\u5899\u89c4\u5219\u3002\u8bf7\u8bb0\u4f4f\uff0c\u901a\u8fc7 iptables \u547d\u4ee4\u6240\u505a\u7684\u4efb\u4f55\u66f4\u6539\u90fd\u662f\u6682\u65f6\u7684\uff0c\u5fc5\u987b\u4fdd\u5b58\u624d\u80fd\u5728\u670d\u52a1\u5668\u91cd\u542f\u540e\u4ecd\u7136\u6709\u6548\u3002\u8fd9\u5728\u201c\u5e38\u7528\u9632\u706b\u5899\u89c4\u5219\u548c\u547d\u4ee4\u201d\u6559\u7a0b\u7684\u201c\u4fdd\u5b58\u89c4\u5219\u201d\u90e8\u5206\u6709\u8be6\u7ec6\u4ecb\u7ecd\u3002.<\/p>","protected":false},"excerpt":{"rendered":"\u7b80\u4ecb Iptables \u662f\u4e00\u4e2a\u9632\u706b\u5899\uff0c\u5728\u5927\u591a\u6570 Linux \u7cfb\u7edf\u7684\u7f51\u7edc\u5b89\u5168\u4e2d\u8d77\u7740\u81f3\u5173\u91cd\u8981\u7684\u4f5c\u7528\u3002","protected":false},"author":1,"featured_media":14685,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_yoast_wpseo_focuskw":"\u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables","_yoast_wpseo_title":"","_yoast_wpseo_metadesc":"","_yoast_wpseo_canonical":"","_yoast_wpseo_opengraph-description":"","_yoast_wpseo_opengraph-image":"","_yoast_wpseo_twitter-description":"","_yoast_wpseo_twitter-image":"","_yoast_wpseo_focuskeywords":"","_yoast_wpseo_primary_category":"193","footnotes":""},"categories":[193,323],"tags":[385],"class_list":{"0":"post-14684","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-tutorials","8":"category-firewall","9":"tag-385"},"yoast_head":"\n
\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables - \u0628\u0644\u0627\u06af ITPiran<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.itpiran.net\/blog\/zh\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables - \u0628\u0644\u0627\u06af ITPiran\" \/>\n<meta property=\"og:description\" content=\"\u0645\u0642\u062f\u0645\u0647 Iptables \u06cc\u06a9 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0627\u0633\u062a \u06a9\u0647 \u0646\u0642\u0634 \u0627\u0633\u0627\u0633\u06cc \u062f\u0631 \u0627\u0645\u0646\u06cc\u062a \u0634\u0628\u06a9\u0647 \u0628\u0631\u0627\u06cc \u0627\u06a9\u062b\u0631 \u0633\u06cc\u0633\u062a\u0645 \u0647\u0627\u06cc \u0644\u06cc\u0646\u0648\u06a9\u0633 \u0627\u06cc\u0641\u0627 \u0645\u06cc…\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.itpiran.net\/blog\/zh\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/\" \/>\n<meta property=\"og:site_name\" content=\"\u0628\u0644\u0627\u06af ITPiran\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-04T10:40:03+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.itpiran.net\/2024\/02\/04140218\/IptablesBG.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1793\" \/>\n\t<meta property=\"og:image:height\" content=\"1110\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/\"},\"author\":{\"name\":\"admin\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#\\\/schema\\\/person\\\/04ed27b919baca468a2273f8e4318f81\"},\"headline\":\"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables\",\"datePublished\":\"2024-02-04T10:40:03+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/\"},\"wordCount\":93,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/cdn.itpiran.net\\\/2024\\\/02\\\/04140218\\\/IptablesBG.jpg\",\"keywords\":[\"\u0641\u0627\u06cc\u0631\u0648\u0627\u0644\"],\"articleSection\":[\"\u0622\u0645\u0648\u0632\u0634\u06cc\",\"\u0641\u0627\u06cc\u0631\u0648\u0627\u0644\"],\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/\",\"url\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/\",\"name\":\"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables - \u0628\u0644\u0627\u06af ITPiran\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/cdn.itpiran.net\\\/2024\\\/02\\\/04140218\\\/IptablesBG.jpg\",\"datePublished\":\"2024-02-04T10:40:03+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#primaryimage\",\"url\":\"https:\\\/\\\/cdn.itpiran.net\\\/2024\\\/02\\\/04140218\\\/IptablesBG.jpg\",\"contentUrl\":\"https:\\\/\\\/cdn.itpiran.net\\\/2024\\\/02\\\/04140218\\\/IptablesBG.jpg\",\"width\":1793,\"height\":1110},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/tutorials\\\/how-to-list-and-delete-iptables-firewall-rules\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u0622\u0645\u0648\u0632\u0634\u06cc\",\"item\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/category\\\/tutorials\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/\",\"name\":\"\u0628\u0644\u0627\u06af ITPiran\",\"description\":\"\u0627\u062e\u0628\u0627\u0631 \u0648 \u0645\u0642\u0627\u0644\u0627\u062a \u062a\u062c\u0627\u0631\u062a \u067e\u0627\u06cc\u062f\u0627\u0631 \u0627\u06cc\u0631\u0627\u0646\u06cc\u0627\u0646\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#organization\",\"name\":\"\u0628\u0644\u0627\u06af \u062a\u062c\u0627\u0631\u062a \u067e\u0627\u06cc\u062f\u0627\u0631 \u0627\u06cc\u0631\u0627\u0646\u06cc\u0627\u0646\",\"alternateName\":\"ITPIran Blog\",\"url\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/cdn.itpiran.net\\\/2023\\\/12\\\/27150508\\\/cropped-ITPIRAN-BLOG-LOGO-2.png\",\"contentUrl\":\"https:\\\/\\\/cdn.itpiran.net\\\/2023\\\/12\\\/27150508\\\/cropped-ITPIRAN-BLOG-LOGO-2.png\",\"width\":512,\"height\":512,\"caption\":\"\u0628\u0644\u0627\u06af \u062a\u062c\u0627\u0631\u062a \u067e\u0627\u06cc\u062f\u0627\u0631 \u0627\u06cc\u0631\u0627\u0646\u06cc\u0627\u0646\"},\"image\":{\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/#\\\/schema\\\/person\\\/04ed27b919baca468a2273f8e4318f81\",\"name\":\"admin\",\"url\":\"https:\\\/\\\/www.itpiran.net\\\/blog\\\/zh\\\/author\\\/admin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\u5982\u4f55\u5217\u51fa\u548c\u5220\u9664 iptables \u9632\u706b\u5899\u89c4\u5219 - ITPiran \u535a\u5ba2","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.itpiran.net\/blog\/zh\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/","og_locale":"zh_CN","og_type":"article","og_title":"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables - \u0628\u0644\u0627\u06af ITPiran","og_description":"\u0645\u0642\u062f\u0645\u0647 Iptables \u06cc\u06a9 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0627\u0633\u062a \u06a9\u0647 \u0646\u0642\u0634 \u0627\u0633\u0627\u0633\u06cc \u062f\u0631 \u0627\u0645\u0646\u06cc\u062a \u0634\u0628\u06a9\u0647 \u0628\u0631\u0627\u06cc \u0627\u06a9\u062b\u0631 \u0633\u06cc\u0633\u062a\u0645 \u0647\u0627\u06cc \u0644\u06cc\u0646\u0648\u06a9\u0633 \u0627\u06cc\u0641\u0627 \u0645\u06cc…","og_url":"https:\/\/www.itpiran.net\/blog\/zh\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/","og_site_name":"\u0628\u0644\u0627\u06af ITPiran","article_published_time":"2024-02-04T10:40:03+00:00","og_image":[{"width":1793,"height":1110,"url":"https:\/\/cdn.itpiran.net\/2024\/02\/04140218\/IptablesBG.jpg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"admin","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"3 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#article","isPartOf":{"@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/"},"author":{"name":"admin","@id":"https:\/\/www.itpiran.net\/blog\/#\/schema\/person\/04ed27b919baca468a2273f8e4318f81"},"headline":"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables","datePublished":"2024-02-04T10:40:03+00:00","mainEntityOfPage":{"@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/"},"wordCount":93,"commentCount":0,"publisher":{"@id":"https:\/\/www.itpiran.net\/blog\/#organization"},"image":{"@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#primaryimage"},"thumbnailUrl":"https:\/\/cdn.itpiran.net\/2024\/02\/04140218\/IptablesBG.jpg","keywords":["\u0641\u0627\u06cc\u0631\u0648\u0627\u0644"],"articleSection":["\u0622\u0645\u0648\u0632\u0634\u06cc","\u0641\u0627\u06cc\u0631\u0648\u0627\u0644"],"inLanguage":"zh-Hans","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/","url":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/","name":"\u5982\u4f55\u5217\u51fa\u548c\u5220\u9664 iptables \u9632\u706b\u5899\u89c4\u5219 - ITPiran \u535a\u5ba2","isPartOf":{"@id":"https:\/\/www.itpiran.net\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#primaryimage"},"image":{"@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#primaryimage"},"thumbnailUrl":"https:\/\/cdn.itpiran.net\/2024\/02\/04140218\/IptablesBG.jpg","datePublished":"2024-02-04T10:40:03+00:00","breadcrumb":{"@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/"]}]},{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#primaryimage","url":"https:\/\/cdn.itpiran.net\/2024\/02\/04140218\/IptablesBG.jpg","contentUrl":"https:\/\/cdn.itpiran.net\/2024\/02\/04140218\/IptablesBG.jpg","width":1793,"height":1110},{"@type":"BreadcrumbList","@id":"https:\/\/www.itpiran.net\/blog\/tutorials\/how-to-list-and-delete-iptables-firewall-rules\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.itpiran.net\/blog\/"},{"@type":"ListItem","position":2,"name":"\u0622\u0645\u0648\u0632\u0634\u06cc","item":"https:\/\/www.itpiran.net\/blog\/category\/tutorials\/"},{"@type":"ListItem","position":3,"name":"\u0646\u062d\u0648\u0647 \u0641\u0647\u0631\u0633\u062a \u06a9\u0631\u062f\u0646 \u0648 \u062d\u0630\u0641 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 Iptables"}]},{"@type":"WebSite","@id":"https:\/\/www.itpiran.net\/blog\/#website","url":"https:\/\/www.itpiran.net\/blog\/","name":"ITPiran\u535a\u5ba2","description":"\u4f0a\u6717\u53ef\u6301\u7eed\u8d38\u6613\u65b0\u95fb\u548c\u6587\u7ae0","publisher":{"@id":"https:\/\/www.itpiran.net\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.itpiran.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"zh-Hans"},{"@type":"Organization","@id":"https:\/\/www.itpiran.net\/blog\/#organization","name":"\u4f0a\u6717\u53ef\u6301\u7eed\u5546\u4e1a\u535a\u5ba2","alternateName":"ITPIran Blog","url":"https:\/\/www.itpiran.net\/blog\/","logo":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.itpiran.net\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/cdn.itpiran.net\/2023\/12\/27150508\/cropped-ITPIRAN-BLOG-LOGO-2.png","contentUrl":"https:\/\/cdn.itpiran.net\/2023\/12\/27150508\/cropped-ITPIRAN-BLOG-LOGO-2.png","width":512,"height":512,"caption":"\u0628\u0644\u0627\u06af \u062a\u062c\u0627\u0631\u062a \u067e\u0627\u06cc\u062f\u0627\u0631 \u0627\u06cc\u0631\u0627\u0646\u06cc\u0627\u0646"},"image":{"@id":"https:\/\/www.itpiran.net\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.itpiran.net\/blog\/#\/schema\/person\/04ed27b919baca468a2273f8e4318f81","name":"\u884c\u653f","url":"https:\/\/www.itpiran.net\/blog\/zh\/author\/admin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/posts\/14684","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/comments?post=14684"}],"version-history":[{"count":1,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/posts\/14684\/revisions"}],"predecessor-version":[{"id":14687,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/posts\/14684\/revisions\/14687"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/media\/14685"}],"wp:attachment":[{"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/media?parent=14684"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/categories?post=14684"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.itpiran.net\/blog\/zh\/wp-json\/wp\/v2\/tags?post=14684"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}