The use of IpTable Frontend is easy. I'll try to guide your first steps.

Step 1

Get and install .Net framwork. I've tested it under Windows XP,

using native Framemwork 2.0, and also under Linux, using Mono

pre-installed into Opensuse 10.2 Distro.

Step 2

Obtain the "game" here. Ignore sources and double click on the exe

file ( IpTableFronteEnd.exe ) . In doubt get fire !!

Step 3

Once started you can : create a blank configuration, load an existing

one ( I suggest you to make your own template for re-using it ), start

the wizard. ( The last one is till under construction ).

Step 4

Proceed configuring general settings.

I mean the various parameters which define your specific layout and


The order of the various tabs will guide you adding ever more detail.

The devices may be automatically detected using wizard

Step 5

Make your rules !

The rule are divided into General, Specific and Special.

The Generic rules are applied before the specific rules could act.

It's the best place for placing super user access and exception.

The Specific rules organize the traffic into chains ( as Iptables do ) .

Each chain ( you can add your own ) has a set of catching rules,

which defines the packets kind that belong to the chain, and a list

of matching rules that, instead, gives instructions about the chain


For example you can re-direct all SMTP traffic to the SMTP chain

and then allow only your mailserver to get access outside.

The packets which enters into the Chain and are Dropped or

Rejected will be logged ( once the firewall will be loaded ) into

/var/log/messages .

Try using wizard button. ( Load hosts before )

The Special rules lets you to specifiy NAT and/or Port-Mapping.


Keep in mind that all tables are available, but that default value

presented are the best one.

However for a full parameters understanding see IpTable site

( you'll find a lot of documentation ) -

Step 6

Click the Build button and your rules will be magically written into

your destination script file.

The output file is self running and you can place it everywhere and

run it at system start-up.

This file is organized in the way that every value is a variable, so you

can continue managing it using IpTable Frontend or by your end with

Vi, or other text file editor.