Best video I've actually seen on this. For those that are going to use this you can try. For all others wanting to have an Idea on syntax -N is to create new policy -I is insert into the policy chain(putting at top) -J is to jump to policy chain -L list policy (-n with out name resolution , -v verbose) -A append to end of policy -s source ip/host -d destination ip/host --dport destination port --sport sourceport --dports 0:65535 multiple ports --src-range/--dst-range 192.168.1.100-192.168.1.200 ip ranges

tf this is literally more useful than a 45min class

Sorry to hear about your girlfriend.

The GF part was oddly specific.

I hope he continues working on this serie he's helpful and funny af xD

Your channel is so damn good man, really easy to learn and understand. I don't have the words to express it anymore. You should have like a million subs, probably the best teacher about computers here on KZbin :]

I searched the Internet a lot for such a tutorial. This is the best online computer networking tutorial I think. Please continue!!! You could tell us something about Protocols eg (in general and some important Protocols in detail)

I always love your backstories with everything lol. Keep it up.

This is the coolest tutorial I've ever seen so far O_O . Thank you fam !!!

I cant imagine Bucky, the girlfriend example you took to explain the concept got into my head straight. Thanks mate

Thank you for this tutorial. I'm trying to learn how to setup a mail server. And, it's not so easy, coming from a Windows background. But, I'm trying to get into Linux and learn. So, this simple tutorial about iptables is very helpful for me to build up the basic knowledge. Again, thank you. You are a very good teacher.

Thanks Bucky, this is the best iptables tutorial I have had; it was both funny and informational. Good luck with the ladies brother

wow , this is exactly what i was looking for , i studied this two weeks ago in college but didn't understand a damn thing , now i do , tnx a lot

Started from video 1 and now I'm here! Really enjoyed your series Bucky and hope you continue it!

thanks man, i started my studies again and this is helping alot

11:06 Wait ... Did you say "I will smell you next time"? lol

Dropping a single rule is what I needed and you delivered. Thank you.

IPtables has never been more interesting in my life

I won't ever forget the analogy. lol Thank you so much, everything is clear right now.

Hey Bucky, I have seen all your vids in one session. Thanks a lot mate. Great job and effort, easy and smooth. Head up and waiting for your next vids. > liked and shared!

Awesome! Friend, nice, funny tutorial, it highlight from the rest. You should be famous now.

1:20 Actually there are five chains, not three. But you're looking at the filter table, which only has those three available. Look at the mangle table and you'll see all of them. There are more tables (five) and more chains (also five).

I never comment on any post , videos or anything but have to say. " You 're a legend" XD

How does Bucky know so much stuff?

Man, wtf, these series ended on the best part when multiple networks get into contact.

this was helarioussss, thank you so much man, you've helped me with my network security exam xD

Great GF example, really impressive.

Brilliant tutorial!

Great Tutorial.

This tutorial are briliant! please make another one about routing :D

loved your examples LOL

Crazy heroin addict girlfriend example was the milestone of the video! You are awesome Bucky!

that was defiantly your best video, "now..she and all of her crazy friends now send me an email.." lmfao

Andrei Neagoie's Hackernoon post got me to this Tutorial !!

Thanks for an awesome video Bucky!! Loved it.

Very well done. This is very similar to Cisco ACL's. Thumbs up.

i wish i could explain the same scenario in an interview cozit is just superb to remember . thanks bucky

More in this series/playlist please

Always fun to watch!

Nice explanation in the easy way to others understanding. Thank you.

This was so helpful man thank you! Sorry about your lady issues.

Bucky rules the world of computers!!

Your tutorial is so great. It helps me a lot. I'm waiting for your next video.

Why is this the last video in the playlist? Weren't you gonna cover routing/forwarding?

Very very very nice explanation

Very concise video. Thanks for posting 👏

Excellent video very helpful!

Awesome... THANK YOU... To the point an VERY helpful !!!

This specific example only shows blocking IPs within your local network not WAN... JUST to clarify 192.168.x.x is standard for LAN... but the pattern matches... Also for the example with email, this would only apply if you were hosting your own email server and setting filters to the email server itself, typical email has this feature built in to email settings under "filters" "rules" or similar. But the pattern shows network filtering.

this is so funny XDXD it's easier to undarstand because of the humor :)

yoo...you are damnnn...nice strategy huh ❤i understand from you more easily

2:11 When I see Forward do I have to set Forward=1 in sysctl file?

Man! thanks bunch for the amazing video!

Really good explanation thanks

waiting for more

Thank you so much for the amazing tutorial buddy

Awesome .Just a quick question what does -j signify?

I like this guy, he's funny 🤣

Great explained thanks 👍

this is really usefull(even in 2021 XD), thanks man!

blocking port 25 will only allow you to drop packets going out haha. SMTP is for sending mail gotta block IMAP or POP3 LMK if im wrong only been into computers for 2.5 years

thank you.superb video set

Dude, why did you stopped your networking tutorial here! we want some more of this. at least cover the FORWARD of iptables. you gave the best understanding of iptables and so for networking. please!

Is this series complete? I want to learn networking, can i start with this series?

Nice tutorial, thanks .

Where can I get the previous tutorials and next tutorial.

Does anyone know what's the point of ufw (in the console, not the graphical interface) when you type almost exactly the same thing in iptables? I recall that it was supposed to be simpler but you type exactly the same rules in both programs

Bucky, I got one question. Previously in your videos, you mentioned about setting up firewall rules at the linux server level. Here you showed that you are setting up at the PC level. So when you are in a network with a server/pc's how does it work, do you need to set up firewalls seperately at PC level,server level for each and seperate node or just set up the firewall rule at the router level

Anytime i'm stuck with something related to networking, i find a video from newboston and that's amazing.!!!!

Thanks a lot for the tutorials , please can you share your knowledge resources ? i mean when did you learn all that ? thanks again :)

hey what about blocking all listening services except ssh, HTTP and samba

Does this apply only for your network?

You nailed it. I am definitely going to remember how to use iptables because of your crazy girlfriend and her friends.

i think port 25 is smtp for outgoing email and for input why not use the pop3/imap ports?

How I will know the X person internet router IP address, from which he/she is trying to send a message? Also while blocking someone, should I use their device private IP address or Router public IP address? I am very new in this , so maybe these questions can be sly

Got some confusion cleared, Thanks & good luck with your new girl friend

Thanks Bucky, after this what next and help me understand the difference between computer networking and CISCO

could you block all ip adresses except just one, or forward just one and only one address to some specific destination?

How can you do the same with modsecurity?

i want to block my traffic on port 80 and 443. but these command of iptables can't do it. why.. ?? iptables -A OUTPUT -p tcp --source-port 80 -j DROP iptables -A OUTPUT -p tcp --source-port 443 -j DROP

what does REJECT do in the iptables

Apparently, these are for rules filtering data sent from IP on the same network (Private IPs 192.168.0.X). How do we permit traffic in and out if the source was a public IP? Would I have to know the public IP of the crazy girlfriend first?

good explanation

please help! Do this scenario only works if you run a mailserver and all the computers(including his ex and her friends trying to mail bucky) are connected in a same network ?

nice analogy

Thank you so much!

I'm not any great with networking, but is it by any means meaningful to block the gf's IP-address, considering you almost certainly haven't set up your own mail-server at home. You most likely use some commercial like Gmail for instance. I mean you will not get unmasked traffic directly from her, like Messenger/Skype calls and stuff like that, but she can still message you wherever her data doesn't enter your computer directly, but just a datacenter like Google's mail server.

This really helped!

i really love the way you teach

cool example bro

As far as i know, SMTP is outgoing, so blocking it on a client wouldnt matter in this case, specially incoming, would it?

Thank you!

If I block an ip address in Kali using a virtual machine, does it also block that ip from the host system?

hahaha - heroine bro !!! Yoh

Great video, I have a question if your girlfreind use DHCP and send email to you, what you only can do is to block the network IP right?

Bucky would it be possible if you can make videos on logical programming, like how do you think when solving problems. It would be a pleasure.

I like your explanation and sorry about your girlfriend

i beg you please tell about The Network layer Network layer concepts, design issues, static and dynamic routing algorithms, shortest path routing, flooding, distance vector routing, link state routing, distance vector routing, multicast routing, congestion control algorithm, internetworking, Ipv4

that example was too specific tho🤣🤣

When I restart the firewall service, my rules disappear. I tried running iptables-save first, but that didn't help. I'll keep digging. One of these days, as God is my witness, I'll get my machine to accept an inbound UDP packet.