LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-31-2004, 01:49 PM   #1
John Micheal
Member
 
Registered: Apr 2004
Location: Germany
Distribution: RedHat 9
Posts: 38

Rep: Reputation: 15
Thumbs down firewall problem !!!!


Dear all ,

i am running redhat 9 , i am facing some problms with NFS with other
computers on the same lan .

i thik it is a firewall problem

i used (( iptables -L )) to check my firewall settig and it give me
that no rules are applied

but when i use the command redhat-config-securitylevel
it gave me that my secuirty level is high

i really don't know which of them to trust , what i know is that whn i use
redhat-config-securitylevel it should be shown in the iptables -L output

can anyone tell me how i can be sure from my firewall settings !!!!

thanks
 
Old 10-31-2004, 01:56 PM   #2
ugge
Senior Member
 
Registered: Dec 2000
Location: Gothenburg, SWEDEN
Distribution: OpenSUSE 10.3
Posts: 1,028

Rep: Reputation: 45
What did the iptables -L command say about the policies set for the chains?
Setting no rules and a DROP policy would be the absolute security, since it won't let anything through.
 
Old 10-31-2004, 01:58 PM   #3
randyding
Member
 
Registered: May 2004
Posts: 552

Rep: Reputation: 31
Try
# iptables -L -n -v --line-numbers
Look at the file
cat /etc/sysconfig/iptables
It should contain all of the rules currently in force.
Consider turning off redhats firewall, then create your own
using the /sbin/iptables command. It takes a little bit of reading
to figure it all out but then you know what you're working with.
 
Old 11-01-2004, 04:20 AM   #4
John Micheal
Member
 
Registered: Apr 2004
Location: Germany
Distribution: RedHat 9
Posts: 38

Original Poster
Rep: Reputation: 15
yes i want to turn off the redhat firewall

is there a command i can use to turn off the redhats firewall or i must use the graphical tools

thanks
 
Old 11-01-2004, 11:41 AM   #5
randyding
Member
 
Registered: May 2004
Posts: 552

Rep: Reputation: 31
I don't know what scripts the graphical firewall program causes to be run when you boot up. So I'd go into the GUI and turn it off, then you will never have to deal with it anymore. See my previous post and look at the /etc/sysconfig/iptables file, that file should contain the firewall rules to be applied when you boot up. The file is created by saving the iptables, there is an option to /sbin/iptables to do that. I believe the graphical tools writes to that file and when you disable the redhat firewall the only rules that are left will be the rules to accept all incoming and outgoing packets.
 
Old 11-01-2004, 12:00 PM   #6
jonr
Senior Member
 
Registered: Jan 2003
Location: Kansas City, Missouri, USA
Distribution: Ubuntu
Posts: 1,040

Rep: Reputation: 47
If you get discouraged trying to figure out iptables, you might want to consider using a GUI called guarddog (do a search to obtain it if you want it) which makes setting firewall parameters very easy. Guarddog requires a certain amount of KDE stuff to be installed, but apart from that it should be a snap to install and use.
 
Old 11-01-2004, 08:31 PM   #7
jev-bird
Member
 
Registered: Jul 2004
Location: USofA
Distribution: Whatever runs accordingly.
Posts: 200

Rep: Reputation: 30
Guarddog and any other gui based firewall generators are a pain. They have limited functunality. No one could possibly design tools like that with the whole world in mind. So it just gives you a small set of "basic" options. At least I've never found a gui-firewall to meet my needs.

I think its much better to use a very extensive script or just learn iptables.
 
Old 11-01-2004, 11:12 PM   #8
jonr
Senior Member
 
Registered: Jan 2003
Location: Kansas City, Missouri, USA
Distribution: Ubuntu
Posts: 1,040

Rep: Reputation: 47
Quote:
Originally posted by jev-bird
Guarddog and any other gui based firewall generators are a pain. They have limited functunality. No one could possibly design tools like that with the whole world in mind. So it just gives you a small set of "basic" options. At least I've never found a gui-firewall to meet my needs.

I think its much better to use a very extensive script or just learn iptables.
Well, it kinda comes down to the age-old question of how much time a user is able or willing to devote to learning such things. I spend too much time at the computer already! For my simple needs (browsing, email, and website administration), Guarddog is a godsend. I don't need anything beyond basics.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
problem with my first firewall.... andra Linux - Security 6 09-20-2005 11:17 AM
Problem with my firewall Musikolo Linux - Networking 2 06-09-2005 01:43 AM
Firewall problem Pedroski Linux - Security 2 06-27-2004 11:37 PM
firewall problem..I think SchoolITguy Linux - Software 15 11-04-2003 07:43 AM
firewall problem ratty007 Linux - Networking 1 04-03-2003 10:45 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:38 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration