LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-30-2005, 03:27 PM   #16
TigerOC
Senior Member
 
Registered: Jan 2003
Location: Devon, UK
Distribution: Debian Etc/kernel 2.6.18-4K7
Posts: 2,380

Rep: Reputation: 49

No, you need to have only one set of rules. I like MonMotha's script because it is very powerful, easy to configure and performs a number of functions.
 
Old 06-30-2005, 10:59 PM   #17
tenzan
Member
 
Registered: May 2005
Posts: 58

Rep: Reputation: 15
Quote:
Originally posted by TigerOC
No, you need to have only one set of rules. I like MonMotha's script because it is very powerful, easy to configure and performs a number of functions.
I have downloaded the version 2.3.8 of MonMontha's script.
Edited the main options like you did (BLACKHOLE left empty - hope this is ok):
# Main Options
IPTABLES="/usr/sbin/iptables"
TCP_ALLOW="80 25 22"
UDP_ALLOW="68 123 6112 6119 4000"
INET_IFACE="eth1"
LAN_IFACE="eth0"
INTERNAL_LAN="192.168.0.0/24"
MASQ_LAN="192.168.0.0/24"
SNAT_LAN=""
DROP="TREJECT"
DENY_ALL=""
DENY_HOSTWISE_TCP=""
DENY_HOSTWISE_UDP=""
BLACKHOLE=""
BLACKHOLE_DROP="DROP"
ALLOW_HOSTWISE_TCP=""
ALLOW_HOSTWISE_UDP=""

Option ENABLE set to Y.

The rest of script I didn't touch. Can I use the rest of rules in script?

askar
 
Old 07-01-2005, 02:32 AM   #18
TigerOC
Senior Member
 
Registered: Jan 2003
Location: Devon, UK
Distribution: Debian Etc/kernel 2.6.18-4K7
Posts: 2,380

Rep: Reputation: 49
Yes that is fine. If you don't specify an IP or port in the rules then nothing is applied. I run an internet server so find it very useful to block certain ports and IP addresses especially when some one is up to no good.
Note under the udp allows unless you are running an ntp server you can close port 123 as well. Same applies to tcp allows. If you don't have an internet server running close port 80. The firewall will allow connections established from your network to come back via port 80.

Last edited by TigerOC; 07-01-2005 at 02:37 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
debian sarge firewall lostdata Linux - Newbie 6 08-22-2005 04:02 PM
firewall problems in sarge abunsair Debian 4 07-14-2005 03:17 PM
Sarge Software Firewall Eklipz Debian 3 12-11-2004 02:18 PM
software firewall for debian sarge r.stiltskin Linux - Security 1 11-27-2004 08:53 AM
What's with debian SARGE wesleywest Debian 18 09-04-2004 08:03 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:12 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration