{"id":149429,"date":"2020-08-24T19:31:34","date_gmt":"2020-08-24T11:31:34","guid":{"rendered":"http:\/\/4563.org\/?p=149429"},"modified":"2020-08-24T19:31:34","modified_gmt":"2020-08-24T11:31:34","slug":"%e5%a6%82%e4%bd%95%e7%9c%8b%e5%88%b0%e4%b8%80%e4%b8%aa%e5%8c%85%e5%9c%a8-iptables-%e4%b8%ad%e7%bb%8f%e8%bf%87%e4%ba%86%e5%93%aa%e4%ba%9b%e8%a7%84%e5%88%99%ef%bc%8c%e8%a2%ab%e4%bf%ae%e6%94%b9%e4%ba%86","status":"publish","type":"post","link":"http:\/\/4563.org\/?p=149429","title":{"rendered":"\u5982\u4f55\u770b\u5230\u4e00\u4e2a\u5305\u5728 iptables \u4e2d\u7ecf\u8fc7\u4e86\u54ea\u4e9b\u89c4\u5219\uff0c\u88ab\u4fee\u6539\u4e86\u54ea\u4e9b\u4e1c\u897f"},"content":{"rendered":"
\n
\n
\n

\u5982\u4f55\u770b\u5230\u4e00\u4e2a\u5305\u5728 iptables \u4e2d\u7ecf\u8fc7\u4e86\u54ea\u4e9b\u89c4\u5219\uff0c\u88ab\u4fee\u6539\u4e86\u54ea\u4e9b\u4e1c\u897f <\/h1>\n

<\/p>\n

\n
\u8cc7\u6df1\u5927\u4f6c : zhoudaiyu <\/span> <\/i> 9<\/span> <\/div>\n
<\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n
\u6bd4\u5982 k8s \u4f7f\u7528\u4e86 iptables \u505a\u7684\u5305\u8f6c\u53d1\u7b49\u4e00\u7cfb\u5217\u64cd\u4f5c\uff0c\u4f46\u662f\u6211\u60f3\u770b\u5230\u67d0\u4e2a\u5305\u8fc7\u4e86\u54ea\u4e9b\u89c4\u5219\uff0c\u6bcf\u6b21\u88ab\u6539\u4e86\u54ea\u4e9b\u6570\u636e\uff0c\u8fd9\u4e2a\u6709\u65b9\u6cd5\u5417\uff1f <\/div>\n
\u5927\u4f6c\u6709\u8a71\u8aaa<\/b> (7<\/span>) <\/div>\n
<\/div>\n<\/p><\/div>\n<\/p><\/div>\n
    \n
  • \n
    \n
    \n
    \u8cc7\u6df1\u5927\u4f6c : yankebupt <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    \u4e0a\u4e2a\u94a9
    \u5148\u987a\u4fbf\u95ee\u4e0b iptables \u9ed8\u8ba4\u5c0a\u91cd ttl \u4e48
    \u518d\u987a\u4fbf\u95ee\u4e0b\u5927\u5c40\u57df\u7f51\u5916\u9762\u662f\u4e0d\u662f\u5df2\u7ecf\u5168\u4f53 ipsec \u4e86……
    \u6ca1\u4eba\u613f\u610f\u8bf4\u5c31\u7b97\u4e86 <\/div>\n<\/p><\/div>\n<\/li>\n
  • \n
    \n
    \n
    \u8cc7\u6df1\u5927\u4f6c : taogen <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    \u6700\u4e3a\u65b0\u624b\u4e00\u822c\u4f7f\u7528 ufw <\/div>\n<\/p><\/div>\n<\/li>\n
  • \n
    \n
    \n
    \u8cc7\u6df1\u5927\u4f6c : Jirajine <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    \u6362 nftables\uff0c\u53ef\u4ee5\u5f88\u65b9\u4fbf\u7684 trace \u3002iptables \u8c03\u8bd5\u5f88\u9ebb\u70e6\u3002 <\/div>\n<\/p><\/div>\n<\/li>\n
  • \n
    \n
    \n
    \u4e3b<\/span> \u8cc7\u6df1\u5927\u4f6c : zhoudaiyu <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    @yankebupt hook \uff1f<\/p>\n

    @taogen \u5168\u79f0\u662f\u5565 \u8c8c\u4f3c\u6ca1\u67e5\u5230
    @Jirajine \u4e0d\u77e5\u9053 k8 \u652f\u6301\u4e0d\u652f\u6301 <\/div>\n<\/p><\/div>\n<\/li>\n

  • \n
    \n
    \n
    \u8cc7\u6df1\u5927\u4f6c : Jirajine <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    @zhoudaiyu \u4e0d\u7528\u60f3\uff0c\u80af\u5b9a\u4e0d\u652f\u6301\u3002
    \u4e00\u822c\u60c5\u51b5\u4e0b\u7528\u8fd9\u4e9b\u7a0b\u5e8f\u4e0d\u9700\u8981\u624b\u52a8\u64cd\u4f5c iptables \u5427\u3002 <\/div>\n<\/p><\/div>\n<\/li>\n
  • \n
    \n
    \n
    \u8cc7\u6df1\u5927\u4f6c : shiji <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    \u67d0\u4e2a\u5305\u8fc7\u4e86\u54ea\u4e9b\u89c4\u5219:
    https:\/\/serverfault.com\/questions\/78240\/debugging-rules-in-iptables<\/p>\n

    k8s \u53d8\u52a8\u4e86\u54ea\u4e9b\u89c4\u5219\uff1a
    iptables -L \u80fd\u5217\u51fa\u5f53\u524d\u6240\u6709\u89c4\u5219\u3002 <\/div>\n<\/p><\/div>\n<\/li>\n

  • \n
    \n
    \n
    \u4e3b<\/span> \u8cc7\u6df1\u5927\u4f6c : zhoudaiyu <\/span> <\/div>\n
    <\/i> <\/span> <\/div>\n<\/p><\/div>\n
    @Jirajine \u5c31\u662f\u60f3\u5b66\u4e60\u5b66\u4e60 k8 \u7684\u7f51\u7edc\u8fd9\u5757 <\/div>\n<\/p><\/div>\n<\/li>\n
  • \n","protected":false},"excerpt":{"rendered":"

    \u5982\u4f55\u770b\u5230\u4e00\u4e2a\u5305\u5728 iptables…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[],"tags":[],"_links":{"self":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts\/149429"}],"collection":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=149429"}],"version-history":[{"count":0,"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts\/149429\/revisions"}],"wp:attachment":[{"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=149429"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=149429"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=149429"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}