       arno-iptables-firewall  -  Single-  &  multi-homed firewall script with
       DSL/ADSL support.




       arno-iptables-firewall is an iptables configuration script with support
       for both IPv4 & IPv6.  While it  is  extremely  easy  to  use  one  can
       nevertheless use it in quite complicated environments.

       All  available  options  are  explained  in  the extensively documented
       configuration file.

       The external interface of the system needs to be set up properly in the
       firewalls  configuration  file  (EXT_IF).   The default behavior of the
       firewall is to deny all incoming connections.

       For additional requirements  not  covered  by  the  configuration  file
       custom       iptables       rules       can      be      placed      in
       /etc/arno-iptables-firewall/custom-rules.  This file  is  automatically
       parsed by the service script.

       See          the          README          file          (eg.         in
       /usr/(local/)share/doc/arno-iptables-firewall) for an  example  how  to
       manage logging of firewall events through syslogd.

       The  arno-fwfilter  script  can  be used to make the firewall logs more
       readable for humans (see manpage).

       Several plugins for the firewall script are available  online.  Plugins
       can  be  downloaded from Please see the
       README file for more information.


       /etc/init.d/arno-iptables-firewall              system service script
       /etc/arno-iptables-firewall/firewall.conf       firewall configuration
       /etc/arno-iptables-firewall/conf.d/             firewall configuration directory
       /etc/arno-iptables-firewall/custom-rules        custom iptables rules
       /etc/arno-iptables-firewall/blocked-hosts       host blacklist
       /etc/arno-iptables-firewall/mac-addresses       mac filter list

       Please  note,  that  the  last  two  files  do  exist  in  the  initial
       configuration      and      their      use      is      disabled     in


       iptables(8), arno-fwfilter(1), syslog.conf(5)

       The web site.


       arno-iptables-firewall   was   written   by   Arno    van    Amersfoort
       <>        and       Lonnie       Abelbeck

       This    manual    page     was     written     by     Michael     Hanke
       <>,  for  the Debian project (but may be used by