MWE,
First starters, why would you want to use IPchains ? I was using IPchains around 2 years ago and made t he switch to IPtables.
There are considerate advantages using IPtables in contrast to IPChains.
Secondly, IPchains do not support statefull packet filters, whereas IPtables does. Statefull packet filtering means that each packet passed through the firewall is examined and the appropriate reponse packet is expected. This was the firewall keeps track of your outgoing/incoming packets.
Thirdly, IPtables is alot more flexible and easier to work with. The logical structure of the chain model is different from that which IPChains uses. You are able to port forward to an internal machine with a simple command. where as with ipchains, it was very messy.
Lastly, IPtables is the new "in" thing, which is working fine for everyone. I've used it for custom firewalls used with Internet banking machines and its worked just fine. Stick with the new stuff and dont get bogged down with the old stuff !
In cases you didn't notice on the homepage, there will be heaps of information which will cover IPtables and various configurations.
For now, I can only point you to sites:
www.netfilter.org/
(home of iptables)- contains heaps of information and examples to get you started.
www.linuxguru.net
(do a search for iptables)
Hope this helps.
Cheers, [img]images/smiles/icon_cool.gif[/img]
