Linux IPtables

Firewalls are tools that can protect an OS. Linux has iptables and firewalld, which contain firewall rules and can manage firewall rules in Linux. Essentially, iptables and firewalld are configured by the systems administrator to reject or accept traffic. While you are not expected to be able to configure a system, read this article to see how iptables can control incoming or outgoing traffic. Why does the order of the rules matter?

The kiosk project

To illustrate all this, let's imagine we work for a store that's part of a larger chain called BigMart. They've been around for decades; in fact, our imaginary grandparents probably grew up shopping there. But these days, the guys at BigMart corporate headquarters are probably just counting the hours before Amazon drives them under for good.

Nevertheless, BigMart's IT department is doing its best, and they've just sent you some WiFi-ready kiosk devices that you're expected to install at strategic locations throughout your store. The idea is that they'll display a web browser logged into the BigMart.com products pages, allowing them to look up merchandise features, aisle location, and stock levels. The kiosks will also need access to bigmart-data.com, where many of the images and video media are stored.

Besides those, you'll want to permit updates and, whenever necessary, package downloads. Finally, you'll want to permit inbound SSH access only from your local workstation, and block everyone else. The figure below illustrates how it will all work:

The kiosk traffic flow being controlled by iptables.