Translate

<primary><emphasis>netfilter</emphasis></primary>
SourceTranslationState
28
<emphasis>BACK TO BASICS</emphasis> Firewall
<emphasis>回到基础</emphasis> 防火墙
29
<primary>packet</primary><secondary>IP</secondary>
<primary>包</primary><secondary>IP</secondary>
30
A <emphasis>firewall</emphasis> is a piece of computer equipment with hardware and/or software that sorts the incoming or outgoing network packets (coming to or from a local network) and only lets through those matching certain predefined conditions.
<emphasis>防火墙</emphasis>是计算机设备的一部分,该设备使用硬件和(或者)软件分拣流入和流出的网络数据包(源自或者源于局域网),并且只允许符合预定义条件的包通过。
31
A firewall is a filtering network gateway and is only effective on packets that must go through it. Therefore, it can only be effective when going through the firewall is the only route for these packets.
防火墙是一个过滤网关,并且只对要通过它的数据包有作用。因此,只有在防火墙是这些数据包的唯一路由器的时候才有效。
32
The lack of a standard configuration (and the “process, not product” motto) explains the lack of a turn-key solution. There are, however, tools that make it simpler to configure the <emphasis>netfilter</emphasis> firewall, with a graphical representation of the filtering rules. <command>fwbuilder</command> is undoubtedly among the best of them.
缺乏标准配置(之前“过程,而非产品”的格言)就缺少交钥匙解决方案。然而,有些工具使配置 <emphasis>netfilter</emphasis> 防火墙更加简单,使用图形显示过滤规则。<command>fwbuilder</command> 无疑是其中的佼佼者。
33
<primary><emphasis>netfilter</emphasis></primary>
<primary><emphasis>netfilter</emphasis></primary>
34
<emphasis>SPECIFIC CASE</emphasis> Local Firewall
<emphasis>特例</emphasis> 局部防火墙
35
A firewall can be restricted to one particular machine (as opposed to a complete network), in which case its role is to filter or limit access to some services, or possibly to prevent outgoing connections by rogue software that a user could, willingly or not, have installed.
防火墙可以应用在个别机器上(相对于整个网络而言),在这些情况中其角色是过滤或限制对一些服务的访问,或阻止用户有意或无意安装的流氓软件对外部的连接。
36
The Linux kernel embeds the <emphasis>netfilter</emphasis> firewall. It can be controlled from user space with the <command>iptables</command> and <command>ip6tables</command> commands. The difference between these two commands is that the former acts on the IPv4 network, whereas the latter acts on IPv6. Since both network protocol stacks will probably be around for many years, both tools will need to be used in parallel.
Linux 内核嵌入了 <emphasis>netfilter</emphasis> 防火墙。可以使用用户空间的 <command>iptables</command> 和 <command>ip6tables</command> 命令控制。这两个命令直接的区别在于前者作用在 IPv4 网络,而后者作用在 IPv6。由于两种网络协议可能在多年内共存,这就需要同时使用两个工具。
37
<primary><command>iptables</command></primary>
<primary><command>iptables</command></primary>
38
<primary><command>ip6tables</command></primary>
<primary><command>ip6tables</command></primary>

Loading…

Loading…

Things to check

Glossary

Source Translation
No related strings found in the glossary.

Source information

Flags
xml-text
Source string age
4 years ago
Translation file
zh-CN/​14_security.po, string 33
String priority
Medium
Failing checks