Install iptables Package

Classification:

compliance

Framework:

Control:

Description

The iptables package can be installed with the following command:


$ apt-get install iptables

Rationale

iptables controls the Linux kernel network packet filtering code. iptables allows system operators to set up firewalls and IP masquerading, etc.

Remediation

Shell script

The following script can be run on the host to remediate the issue.

DEBIAN\_FRONTEND=noninteractive apt-get install -y "iptables"

Ansible playbook

The following playbook can be run with Ansible to remediate the issue.

- name: Ensure iptables is installed
 package:
 name: iptables
 state: present
 tags:
 - NIST-800-53-CM-6(a)
 - PCI-DSS-Req-1.4.1
 - PCI-DSSv4-1.4.2
 - enable\_strategy
 - low\_complexity
 - low\_disruption
 - medium\_severity
 - no\_reboot\_needed
 - package\_iptables\_installed