How secure is this IPTABLES setup?
I'm a bit of a newb and this is my first go at creating an iptables / nat script. however I'm not sure if this is secure enough...
i really want to make my config as secure as possible, so any suggestions/comments are greatly appreciated notes:
Code:
#!/bin/sh |
That's pretty secure and unusually clear for a first time firewall.
You are offering a few services... be aware of the vulnerabilities of these services. This is where you will be attacked. Note, you can use samba tools to further secure... samba. http://troy.jdmz.net/samba/fw/ |
Here's a few things I would recommend to tighten it a bit:
Quote:
Code:
iptables -A FORWARD -p tcp -i eth0 -o wlan0 --dport 80 \ Quote:
You are much better-off letting the packets hit the DROP policy. Quote:
Quote:
Code:
iptables -A OUTPUT -p tcp --sport 137:139 -o eth0 -j LOG \ |
Thanks for your help guys.
I have made the suggested changes, and fixed a couple of things i got wrong (mixed up eth0 and wlan0 in my netbios blocks) here is the latest version :) : Code:
#!/bin/sh |
Looks good. Although, you're still forwarding port 80 and 443 packets regardless of the interface they hit or what state they have. I haven't run a test, but I would suspect this opens you up to certain types of mischief at the very least. Better safe than sorry, no?
|
whoops forgot those ones, updated:
Code:
#!/bin/sh |
All times are GMT -5. The time now is 12:00 PM. |