{"guid":"ae6e36cb-713c-4b73-99ac-f1b95f910e32","title":"Paketfiltern und mehr mit netfilter","subtitle":"Die Reise eines Pakets durch die Tabellen \u0026 Ketten","slug":"froscon2018-2246-paketfiltern_und_mehr_mit_netfilter","link":"https://programm.froscon.de/2018/events/2246.html","description":"Der Einzug von Netfilter in den Kernel, ist eine Weile her. Netfilter und seine Userlandtools ip(6)tables (u.a.) sind seit 2001 im Kernel und damit fast erwachsen. In der Zwischenzeit haben neue Technologien Einzug in das Linux-Ökosystem gehalten; iptables wird weiterhin eingesetzt. Es hat sich auch aufgrund seiner Vielseitigkeit von einer Paketfilterimplementierung zu einem unterstützendem Werkzeug für Anwendungen wie Routing, NAT, Applicationlevelproxying, Deep Packet Inspection (DPI), Traffic Shaping und vielem mehr entwickelt.\n\nDieser praxisorientierte Vortrag soll  die Motivation und Konzepte von  Paketfiltern behandeln. \nRegeln sind die Bausteine von iptables. Es wird geklärt:\n- Woraus bestehen diese?\n- Wie erstellt man Regeln?\n- Was sind Tabelle, Ketten, Matches und Targets?\n\nAnhand von realen Beispielen wird der Aufbau von Regelwerken aufgezeigt.\nEs entstehen schnell große Regelsets. Tipps für das Regelmanagement sollen aufzeigen wie man der Regeln Herr wird.\n\nIptables kann nicht nur filtern: über Features wie Conntrack und NAT wird aus dem Leben berichtet.\nEs soll gezeigt werden, was iptables sonst noch für Dich tun kann.\n\nErsetzende und ergänzende Technologien sind bereits im Kernel: nftables und bpfilter. Abschließend  wird noch kurzer Blick auf die Zukunft geworfen.","original_language":"deu","persons":["Jörg Jungermann"],"tags":["froscon2018","2246","Network Track"],"view_count":457,"promoted":false,"date":"2018-08-25T00:00:00.000+02:00","release_date":"2018-08-25T02:00:00.000+02:00","updated_at":"2026-04-05T00:15:06.634+02:00","length":3223,"duration":3223,"thumb_url":"https://static.media.ccc.de/media/events/froscon/2018/2246-hd.jpg","poster_url":"https://static.media.ccc.de/media/events/froscon/2018/2246-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/froscon/2018/ae6e36cb-713c-4b73-99ac-f1b95f910e32-timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/froscon/2018/ae6e36cb-713c-4b73-99ac-f1b95f910e32-thumbnails.vtt","frontend_link":"https://media.ccc.de/v/froscon2018-2246-paketfiltern_und_mehr_mit_netfilter","url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_title":"FrOSCon 2018","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018","related":[{"event_id":5732,"event_guid":"e9fdf337-3b08-429c-a107-4a965cc4bb85","weight":2},{"event_id":5734,"event_guid":"adde2800-ffa1-44c4-aafd-c4928ee5378d","weight":12},{"event_id":5736,"event_guid":"73bbeee4-7791-42d2-b3bd-317ca12a8895","weight":2},{"event_id":5738,"event_guid":"fafacf91-9842-4a5f-bb02-146250450001","weight":12},{"event_id":5744,"event_guid":"7f4d46f0-83bd-4551-bb55-1b558ba59dda","weight":2},{"event_id":5756,"event_guid":"cfc15b5d-d114-447d-a351-7d17fcf05869","weight":18},{"event_id":5758,"event_guid":"ef2ff203-e91d-4b8f-90ad-966fe74d5325","weight":12},{"event_id":5763,"event_guid":"e7828a90-6f0a-439b-a6a8-2e129a00b521","weight":12},{"event_id":5773,"event_guid":"be056c9c-b6f6-42a3-adb1-0d6e80a1f4c7","weight":14},{"event_id":5782,"event_guid":"2596a0ad-f2a4-403b-9d79-1398c4f72e53","weight":15},{"event_id":5786,"event_guid":"ddcadb48-0ea6-4bbd-8823-57b70e394afc","weight":14},{"event_id":5788,"event_guid":"b6faaa05-454e-4a52-9cbe-4e52bd30ad80","weight":17},{"event_id":5792,"event_guid":"f5c68cea-eb34-49ae-bb15-d0fc1085985b","weight":11},{"event_id":5802,"event_guid":"281464f3-4783-4c82-8e55-709b6ccee776","weight":14},{"event_id":5810,"event_guid":"291fe17d-80ca-46a9-9978-c61509a4f9c9","weight":15},{"event_id":5830,"event_guid":"1f3a0237-0515-4cdb-90ac-d57f7bc85586","weight":14}],"recordings":[{"size":157,"length":3223,"mime_type":"video/mp4","language":"deu","filename":"froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2018-08-25T18:19:20.835+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/h264-hd/froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_hd.mp4","url":"https://api.media.ccc.de/public/recordings/27188","event_url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":77,"length":3223,"mime_type":"video/mp4","language":"deu","filename":"froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2018-08-25T18:39:11.302+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/h264-sd/froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_sd.mp4","url":"https://api.media.ccc.de/public/recordings/27211","event_url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":49,"length":3216,"mime_type":"audio/mpeg","language":"deu","filename":"froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2018-08-25T18:39:25.968+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/mp3/froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/27212","event_url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":42,"length":3216,"mime_type":"audio/opus","language":"deu","filename":"froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2018-08-25T18:39:41.080+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/opus/froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_opus.opus","url":"https://api.media.ccc.de/public/recordings/27213","event_url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":268,"length":3223,"mime_type":"video/webm","language":"deu","filename":"froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2018-08-25T19:11:15.194+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/webm-hd/froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/27221","event_url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":110,"length":3223,"mime_type":"video/webm","language":"deu","filename":"froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2018-08-25T19:11:40.064+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/webm-sd/froscon2018-2246-deu-Paketfiltern_und_mehr_mit_netfilter_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/27222","event_url":"https://api.media.ccc.de/public/events/ae6e36cb-713c-4b73-99ac-f1b95f910e32","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"}]}