LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 02-09-2003, 10:17 PM   #1
arkmannj
LQ Newbie
 
Registered: Feb 2003
Location: Utah
Distribution: Yellow Dog Linux 2.3
Posts: 4

Rep: Reputation: 0
Exclamation Need Firewall & IPTABLES HELP




ok So I'm completly new to linux... I know that with my distribution (Yellow Dog Linux (it's about like red hat for PwerPC's...rpm's etc...) uses iptables

all I need to do is block/reject/deny FTP (21) , HTTPS(443)

or close everything except
HTTP (80)
Proxy junk (3065)
DNS (53)
DHCP (67)
port (111)
webmin (10000)

Can SomeOne please Help Me !!!!!
 
Old 02-09-2003, 11:05 PM   #2
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
Try downloading the program FIRESTARTER. It has an easy to use GUI and saves you the mess of learning how to setup IPTABLES manually.
 
Old 02-10-2003, 10:42 AM   #3
arkmannj
LQ Newbie
 
Registered: Feb 2003
Location: Utah
Distribution: Yellow Dog Linux 2.3
Posts: 4

Original Poster
Rep: Reputation: 0
Thanks for the info.. I've firestarter, but unfortunatly the settings it gives doesn't like my nat settings... maybe I'm clueless ???? or maybe it has issues with YDL (yellow Dog 2.3)
any other ideas

P.S. are you saying I should keep my printer on the other server LOL ;-)
 
Old 02-11-2003, 08:53 PM   #4
arkmannj
LQ Newbie
 
Registered: Feb 2003
Location: Utah
Distribution: Yellow Dog Linux 2.3
Posts: 4

Original Poster
Rep: Reputation: 0
here's the answer I got and it worked... (this is my IPTABLES)
#script is Arkmannj's usual free linux licences apply

*nat
:PREROUTING ACCEPT [37:4907]
:POSTROUTING ACCEPT [4:292]
:OUTPUT ACCEPT [4:292]
[0:0] -A POSTROUTING -s 192.168.0.0/255.255.255.0 -o eth1 -j MASQUERADE
COMMIT


*filter
:OUTPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
-A INPUT -p tcp -m tcp -m multiport --ports 21,22,23,443 -j DROP
-A FORWARD -p tcp -m tcp -m multiport --ports 21,22,23,443 -j DROP
-A OUTPUT -p tcp -m tcp -m multiport --ports 21,22,23,443 -j DROP
COMMIT
# Completed on Tue Feb 11 02:08:38 2003
 
Old 02-11-2003, 10:17 PM   #5
arkmannj
LQ Newbie
 
Registered: Feb 2003
Location: Utah
Distribution: Yellow Dog Linux 2.3
Posts: 4

Original Poster
Rep: Reputation: 0
FOR THOSE OF YOU IN LDSBC THE ABOVE IS NOT YOUR KEY TO VICTORY.. I HAVE POSTED THIS NOW BECAUSE THE PROJECT HAS CHANGED NOW THAT I HAVE SPENT MANY MANY HOURS COMING UP WITH HOW TO GET THIS TO WORK (FIGURED IT OUT ACCORDING TO THE PROJECT DESCRIPTION about 2 10 AM ONLY TO HAVE THE PROJECT CHANGED TODAY . . . BUT IF YOU THINK THIS WILL HELP THEN I GUESS MORE POWER TO YA. . .
 
Old 02-12-2003, 04:19 AM   #6
nakkaya
LQ Guru
 
Registered: Jan 2003
Location: Turkey&USA
Distribution: Emacs and linux is its device driver(Slackware,redhat)
Posts: 1,398

Rep: Reputation: 45
you can disable firestarter own setting and place your own settings
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
FTP & iptables firewall hct224 Linux - Newbie 9 05-04-2012 02:43 PM
iptables & firewall Mibble Linux - Security 1 09-12-2005 02:47 PM
nat & firewall thru iptables jkmartha Linux - Security 5 05-13-2005 08:47 AM
Iptables Firewall & Proxy Server chrisfirestar Linux - Security 22 12-22-2003 10:30 AM
IPTABLES, NAT & Firewall dsylvester Slackware 1 02-15-2003 08:14 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:57 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration