LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Webmin or a easy way to manage a firewall (https://www.linuxquestions.org/questions/linux-security-4/webmin-or-a-easy-way-to-manage-a-firewall-4175634017/)

JamesMore 07-14-2018 10:16 AM
Webmin or a easy way to manage a firewall
 
I use webmin to manage my ubuntu headless server. So I was looking to try and find a webmin module that could help me secure my server with a firewall.

My normal rules are allow all access from my office and block everything else, with the exception of opening the ports for rtorrent

I like a gui so I can look at logs and tweak other things I was looking at CSF but I just was not sure how that linked in to IP tables or how that differed from just using iptables.

Any help on a recommended webmin or webbased firewall or help in setting up my rules would be great.

scasey 07-14-2018 10:27 AM
I see these Webmin modules that appear to address firewalls:
FirewallD
Linux Firewall
Linux IPv6 Firewall
Shoreline Firewall
Shorewall6 Firewall

Suggest using the Webmin search function...enter "firewall" (no quotes) there...

JamesMore 07-14-2018 11:11 AM
Quote:
Originally Posted by scasey (Post 5879144)
I see these Webmin modules that appear to address firewalls:
FirewallD
Linux Firewall
Linux IPv6 Firewall
Shoreline Firewall
Shorewall6 Firewall

Suggest using the Webmin search function...enter "firewall" (no quotes) there...
Thanks I started with CFS but it has a step learning curve, I like FirewallD and the idea of zones but would like to see some more documentation on the webmin module as most of it is just standard man stuff.

JamesMore 07-16-2018 08:59 PM
So FirewallD is installed and I want to manage it from webmin but I cant see how to add a ip address to a rule

Any one able to help or do I have to use the CLI

Habitual 07-17-2018 05:11 PM
https://doxfer.webmin.com/Webmin/FirewallD ?

JamesMore 07-20-2018 05:35 PM
Quote:
Originally Posted by Habitual (Post 5880410)
That is just a picture it does not print a 1000 words to me. I still cant see how to add a IP address to a zone from within "Webmin"

scasey 07-20-2018 05:56 PM
I'm not seeing how to do that with Webmin either, so I'm learning firewall-cmd.
Excerpt from a bash shell script I wrote so I didn't have to remember what to do to block 1 IP address
Code:
firewall-cmd --add-rich-rule="rule family='ipv4' source address='$IP' reject"
firewall-cmd --permanent --add-rich-rule="rule family='ipv4' source address='$IP' reject"
...where $IP is passed in from the command line. The first line make an immediate change; the second line makes it survive reboots.
Code:
man firewall-cmd
which is onerous...I've done a lot of web searching, too.

I'm not finding a GUI or web interface yet. Nor have I looked at the other webmin modules, yet.

NOTE: I'm on CentOS 7 so ymmv

Habitual 07-21-2018 12:01 PM
#yakattack
 
https://doxfer.webmin.com is Webmin's Documentation Portal.

Webmin_Modules >
I see several possible entries under modules...(these may not all be present/enabled on your install).
FirewallD
IPFilter_Firewall
Linux_Firewall

One of those has the solution. Maybe two modules are involved. Perhaps, perhaps not.
I don't know what you mean by "easy way to manage a firewall". Hire an Admin? Or Learn to be One.
English is what I got at Documentation Portal
You can select the Documentation Portal's language but that only accommodates the wiki-driven site
elements. The actual content seems to remain in English.
I apologize for the brevity here.

If you "I like a gui so I can look at logs and tweak other things" - then webmin is the place.
I liked looking at logs so much, that I built a solution. an "ELK stack"

Both tasks can be accomplished at a terminal prompt "easily". IMHO

"help", "easy"...
No hablo. Lo Siento.

Buenas Suerte.

AwesomeMachine 07-25-2018 04:24 AM
You could try a firewall distro.


All times are GMT -5. The time now is 02:34 PM.