Join Amazon Prime and ship Two-Day for free and Overnight for $3.99. Already a member? Sign in.

 

or
Sign in to turn on 1-Click ordering.
 
 
More Buying Choices
33 used & new from $34.19

Have one to sell? Sell yours here
 
   
Designing and Implementing Linux Firewalls with QoS using netfilter, iproute2, NAT and L7-filter
 
 
Tell the Publisher!
I’d like to read this book on Kindle

Don’t have a Kindle? Get yours here.
 
  

Designing and Implementing Linux Firewalls with QoS using netfilter, iproute2, NAT and L7-filter (Paperback)

by Lucian Gheorghe (Author)
Key Phrases: sfq quantum, add dev ethl parent, htb rate, Medium Networks Case Studies, Firewall Prerequisites, Distribution Network (more...)
4.0 out of 5 stars See all reviews (3 customer reviews)

List Price: $39.99
Price: $35.99 & this item ships for FREE with Super Saver Shipping. Details
You Save: $4.00 (10%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
In Stock.
Ships from and sold by Amazon.com. Gift-wrap available.

Want it delivered Monday, July 20? Choose One-Day Shipping at checkout. Details
20 new from $35.99 13 used from $34.19

Frequently Bought Together

Designing and Implementing Linux Firewalls with QoS using netfilter, iproute2, NAT and L7-filter + Linux Firewalls: Attack Detection and Response with iptables, psad, and fwsnort + Linux iptables Pocket Reference
Price For All Three: $78.91

Show availability and shipping details


Customers Who Bought This Item Also Bought


Editorial Reviews

Product Description
Learn how to secure your system and implement QoS using real-world scenarios for networks of all sizes
  • Implementing Packet filtering, NAT, bandwidth shaping, packet prioritization using netfilter/iptables, iproute2, Class Based Queuing (CBQ) and Hierarchical Token Bucket (HTB)
  • Designing and implementing 5 real-world firewalls and QoS scenarios ranging from small SOHO offices to a large scale ISP network that spans many cities
  • Building intelligent networks by marking, queuing, and prioritizing different types of traffic

In Detail

Firewalls are used to protect your network from the outside world. Using a Linux firewall, you can do a lot more than just filtering packets. This book shows you how to implement Linux firewalls and Quality of Service using practical examples from very small to very large networks.

After giving us a background of network security, the book moves on to explain the basic technologies we will work with, namely netfilter, iproute2, NAT and l7-filter. These form the crux of building Linux firewalls and QOS. The later part of the book covers 5 real-world networks for which we design the security policies, build the firewall, setup the script, and verify our installation. Providing only necessary theoretical background, the book takes a practical approach, presenting case studies and plenty of illustrative examples.

Approach

The author draws on his experience to offer the reader valuable advice on the best practices. Providing only necessary theoretical background, the book takes a practical approach, presenting case studies and plenty of illustrative examples.

Who this book is written for?

This book is aimed at Linux Network administrators<!--[if !supportAnnotations]--> with some understanding of Linux security threats and issues, or any one interested in securing their systems behind a firewall. Basic knowledge of Linux is presumed but other than that this book shows you how to do the rest, from configuring your system to dealing with security breaches.

About the Author
Lucian Gheorghe has just joined the Global NOC of Interoute, Europe's largest voice and data network provider. Before Interoute, he was working as a senior network engineer for Globtel Internet, a significant Internet and Telephony Services Provider to the Romanian market He has been working with Linux for more than 8 years putting a strong accent on security for protecting vital data from hackers and ensuring good quality services for internet customers. Moving to VoIP services he had to focus even more on security as sensitive billing data is most often stored on servers with public IP addresses. He has been studying QoS implementations on Linux to build different types of services for IP customers and also to deliver good quality for them and for VoIP over the public internet. Lucian has also been programming with Perl, PHP and Smarty for over 5 years mostly developing in-house management interfaces for IP and VoIP services.

Lucian Gheorghe

Lucian Gheorghe has just joined the Global NOC of Interoute, Europe's largest voice and data network provider. Before Interoute, he was working as a senior network engineer for Globtel Internet, a significant Internet and Telephony Services Provider to the Romanian market He has been working with Linux for more than 8 years putting a strong accent on security for protecting vital data from hackers and ensuring good quality services for internet customers. Moving to VoIP services he had to focus even more on security as sensitive billing data is most often stored on servers with public IP addresses. He has been studying QoS implementations on Linux to build different types of services for IP customers and also to deliver good quality for them and for VoIP over the public internet. Lucian has also been programming with Perl, PHP and Smarty for over 5 years mostly developing in-house management interfaces for IP and VoIP services.


Product Details


Inside This Book (learn more)

What Do Customers Ultimately Buy After Viewing This Item?

Designing and Implementing Linux Firewalls with QoS using netfilter, iproute2, NAT and L7-filter
50% buy the item featured on this page:
Designing and Implementing Linux Firewalls with QoS using netfilter, iproute2, NAT and L7-filter 4.0 out of 5 stars (3)
$35.99
Linux Firewalls: Attack Detection and Response with iptables, psad, and fwsnort
17% buy
Linux Firewalls: Attack Detection and Response with iptables, psad, and fwsnort 5.0 out of 5 stars (9)
$32.97
Linux iptables Pocket Reference
14% buy
Linux iptables Pocket Reference 4.6 out of 5 stars (5)
$9.95
Linux Firewalls (3rd Edition) (Novell Press)
13% buy
Linux Firewalls (3rd Edition) (Novell Press) 4.4 out of 5 stars (36)
$37.11

Tags Customers Associate with This Product

 (What's this?)
Click on a tag to find related items, discussions, and people.
Check the boxes next to the tags you consider relevant or enter your own tags in the field below.
(2)

Your tags: Add your first tag
 
Help others find this product — tag it for Amazon search
No one has tagged this product for Amazon search yet. Why not be the first to suggest a search for which it should appear?

Sell a Digital Version of This Book in the Kindle Store

If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store. Learn more

 

Customer Reviews

3 Reviews
5 star:
 (1)
4 star:
 (1)
3 star:
 (1)
2 star:    (0)
1 star:    (0)
 
 
 
 
 
Average Customer Review
4.0 out of 5 stars (3 customer reviews)
 
 
 
 
Share your thoughts with other customers:
Most Helpful Customer Reviews

 
3 of 3 people found the following review helpful:
5.0 out of 5 stars Very good book, October 22, 2007
If you like opensource, QoS, Firewalls... this book would be what you need.

If you are netadmin, sysadmin or you are an IT guy and learn this book, you can limit p2p/bittorrent traffic, guarantee bandwith for some services like http, ftp, voip, etc. (QoS), you can protect your network with firewalls.

First in chapter 1 we learn about Networking Fundamentals, then in chapter 2, about Security Threats in every OSI layer. After that we are ready to learn about basis of netfilter and iproute (Firewall and QoS).

In next chapters, show us how to do layer 7 filtering, practical QoS and more advanced things. Then we apply this knowledge in a very practical serie of scenerios that come later in the book.

Very good book, I recomend this to you.
Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)



 
3.0 out of 5 stars Disappointing, April 20, 2009
For some this might be a great book. For me, I found the title misleading. I was mainly interested in the QoS aspect as there are already excellent books available on firewalling and NAT.

The QoS seemed to be mostly an afterthought. The QoS policies utilized were tailored to the example networks but there was no discussion of generic QoS capabilities.

The biggest gripe though, is that there was Zero coverage of DSCP and/or 802.1q packet tagging. This book considers queue scheduling based on netfilter or L7-filter to be all that exists as far as QoS is concerned. If you want treatment of DSCP or 802.1p look elsewhere.

P.S. This book is cookbook format. Don't expect to learn the intricate details. It is not a bad book if that is what you are looking for but if you want a more "textbook" style book with complete coverage you will be disappointed.
Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)



 
1 of 2 people found the following review helpful:
4.0 out of 5 stars Pretty good book, January 11, 2007
By Robert Lazarski (Niwot, CO United States) - See all my reviews
(REAL NAME)   
Although I am an experienced Linux user and do some Admin, I'm on my current project developing a linux embedded system that will be a router. We have QoS and netfilter requirements and I found nearly all the data on QoS old and dated for the 2.4 kernel. Furthermore, due to lack of info I had a hard time developing basic test scenarios.

After reading this book, I feel much better preparred for the project. What I liked about the book was the real world examples with some sense of humor. Even on a dry subject like network packets I was able to read thru the book easily. The tc examples and kernel config was what I really needed, and the book handled that well. The book is based on kernel 2.6.14 at least in a few areas.

I'm giving the book 4 stars because I'm just starting. The book does have large and small examples but I haven't used them yet. As an intro I give it 5 stars.
Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)


Share your thoughts with other customers: Create your own review
 
 
Ad
 
Only search this product's reviews



Customer Discussions

 Beta (What's this?)
New! See all customer communities, and bookmark your communities to keep track of them.
This product's forum (0 discussions)
  Discussion Replies Latest Post
  No discussions yet

Ask questions, Share opinions, Gain insight
Start a new discussion
Topic:
First post:
Prompts for sign-in
  [Cancel]


Active discussions in related forums
   


Product Information from the Amapedia Community

Beta (What's this?)



Look for Similar Items by Category


Up to 50% Off Chocolates

Leonidas Chocolates Sale
Save up to 50% on gourmet chocolates from Ghirardelli, Godiva, Leonidas Belgian Chocolates, and more from Amazon Gourmet.
 

Big Savings in Books

Bargain Books
Find great titles at fantastic prices in our Bargain Books Store.
 

Buy Three Books, Get a Fourth Free

4-for-3 Books
Order any four eligible books under $10 and get the lowest-price book free in our 4-for-3 Books Store. See more details.
 

Best Books

Best of the Month
See our editors' picks and more of the best new books on our Best of the Month page.
 
Ad

 

Feedback

If you need help or have a question for Customer Service, contact us.
 Would you like to update product info or give feedback on images?
Is there any other feedback you would like to provide?

Your comments can help make our site better for everyone.


Where's My Stuff?

Shipping & Returns

Need Help?

Your Recent History

  (What's this?)
You have no recently viewed items or searches.

After viewing product detail pages or search results, look here to find an easy way to navigate back to pages you are interested in.

Look to the right column to find helpful suggestions for your shopping session.

Continue shopping: Top Sellers
Free
Free by Chris Anderson
Paranoia
Paranoia by Joseph Finder
My Soul to Lose
My Soul to Lose by Rachel Vincent
Glenn Beck's Common Sense

Conditions of Use | Privacy Notice © 1996-2009, Amazon.com, Inc. or its affiliates