Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
10-01-2003, 11:21 AM
|
#1
|
Newbie
Registered: Aug 2003
Location: Toronto, Canada
Distribution: RedHat
Posts: 13
Rep:
|
iptables forward?
I have a firewall connected to the internet -- two ethernet cards. Behind that I have a switch, my server and other computers.
I've read the iptables material and it is my impression that:
I will NOT be dealling at all with INPUT or OUTPUT, but with FORWARD exclusively and/or the -state stuff. This firewall is not just the software but an actual seperate computer.
I don't know why but I've never read any examples of INPUT OUTPUT set to deny, that is why I'm worried.
|
|
|
10-01-2003, 06:59 PM
|
#2
|
Senior Member
Registered: Jul 2003
Location: Indiana
Distribution: Mandrake Slackware-current QNX4.25
Posts: 1,802
Rep:
|
It sounds to me like you need to look at the rc.firewall.txt or rc.DMZ.firewall.txt
Yes you will need to filter the INPUT, you want to protect the firewall itself. Usually the reason you would filter OUTPUT would be to block access to services or websites.
Last edited by /bin/bash; 10-01-2003 at 07:02 PM.
|
|
|
10-02-2003, 11:15 AM
|
#3
|
Newbie
Registered: Aug 2003
Location: Toronto, Canada
Distribution: RedHat
Posts: 13
Original Poster
Rep:
|
Yes I have read that, but it may be my misinterpretation.
My setup has a server (mail, httpd, smb. etc.) behind the firewall. Just to be clear,: The firewall machine will NOT be doing anything but forwarding to the server or forwarding to the internet. So my understanding is:
IPTABLES -P INPUT DROP
IPTABLES -P OUTPUT DROP
iptables -t nat -A ...etc.
Am I misunderstanding this?
|
|
|
All times are GMT -5. The time now is 03:41 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|