This is an old revision of this page, as edited by Guzenkov (talk | contribs) at 10:22, 20 July 2010 (Unlike iptables, ipchains is stateless.). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.
Revision as of 10:22, 20 July 2010 by Guzenkov (talk | contribs) (Unlike iptables, ipchains is stateless.)(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)Developer(s) | Rusty Russell |
---|---|
Initial release | pre-1998 |
Stable release | 1.3.10 / October 6, 2000; 24 years ago (2000-10-06) |
Written in | C |
Operating system | Linux |
Platform | Linux kernel |
Type | Packet filter management |
License | GPL |
Website |
Linux IP Firewalling Chains, normally called ipchains, is free software to control the packet filter/firewall capabilities in the 2.2 series of Linux kernels. It superseded ipfwadm, but was replaced by iptables in the 2.4 series. Unlike iptables, ipchains is stateless.
It is a rewrite of Linux's previous IPv4 firewall, ipfwadm. This newer ipchains was required to manage the packet filter in Linux kernels starting with version 2.1.102 (which was a 2.2 development release). Patches are also available to add ipchains to 2.0 and earlier 2.1 series kernels. Improvements include larger maximums for packet counting, filtering for fragmented packets and a wider range of protocols, and the ability to match packets based on the inverse of a rule.
The ipchains suite also included some shell scripts for easier maintenance and to emulate the behavior of the old ipfwadm command.
The ipchains software was superseded by the iptables system in Linux kernel 2.4 and above.
References
- Russell, Rusty (2000-07-04). "Linux IPCHAINS-HOWTO". Retrieved 2009-02-08.
{{cite web}}
:|chapter=
ignored (help); Text "version 1.0.8" ignored (help) - "netfilter/iptables project homepage". 2009-02-06. Retrieved 2009-02-08.
External links
- IPChains HOWTO: on TDLP and on FAQs.org