Red Hat 9.0 Firewall Configuration

DrLazardo · 05-17-2003, 05:43 PM

I have been trying to set up NFS on my Red Hat machine and recently found that the problem was due to my Red Hat server's firewall. Using the "Security Level" tool I can disable the firewall completely, allowing for NFS to work. My question is how can I customize my Red Hat firewall to allow NFS connections while basically maintaining a "Medium" security level? The GUI tool allows basically for off/on and my experimenting with iptables has not been going anywhere.

Crashed_Again · 05-17-2003, 06:33 PM

There are a lot of other GUI tools you can use for making a firewall. I would suggest firestarter:

http://firestarter.sourceforge.net/

DrLazardo · 05-17-2003, 06:43 PM

That works, but I would like to understand the basic firewall configuration better. I would like to obtain greater knowledge about my system as is and remove the need for GUI tools. It can't be that hard to allow NFS to pass through my current setup, but I am at a loss at the moment. Thanks for the link, I may use Firestarter anyway but would like some more info if anyone can help.

TheOther1 · 05-22-2003, 12:12 AM

Hi!
Try running lokkit from a console, then select customize and you can allow traffic on any ports you wish. Common ones are predefined and you can check them, you can add ports on the bottom line (ie: 515 for lpd, 443 for https, etc).

Hope that helps.

know · 05-23-2003, 10:12 PM

Also you can define rules by youself.

cmisip · 05-24-2003, 01:21 AM

I use shorewall in the nfs server and in /etc/shorewall/rules I add the following:

ACCEPT loc fw udp 111
ACCEPT loc fw tcp 111
ACCEPT loc fw udp 2049
ACCEPT loc fw udp 32700: