LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-14-2018, 10:16 AM   #1
JamesMore
LQ Newbie
 
Registered: Jul 2010
Posts: 16

Rep: Reputation: 0
Red face Webmin or a easy way to manage a firewall


I use webmin to manage my ubuntu headless server. So I was looking to try and find a webmin module that could help me secure my server with a firewall.

My normal rules are allow all access from my office and block everything else, with the exception of opening the ports for rtorrent

I like a gui so I can look at logs and tweak other things I was looking at CSF but I just was not sure how that linked in to IP tables or how that differed from just using iptables.

Any help on a recommended webmin or webbased firewall or help in setting up my rules would be great.
 
Old 07-14-2018, 10:27 AM   #2
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.5
Posts: 1,435

Rep: Reputation: 490Reputation: 490Reputation: 490Reputation: 490Reputation: 490
I see these Webmin modules that appear to address firewalls:
FirewallD
Linux Firewall
Linux IPv6 Firewall
Shoreline Firewall
Shorewall6 Firewall

Suggest using the Webmin search function...enter "firewall" (no quotes) there...
 
Old 07-14-2018, 11:11 AM   #3
JamesMore
LQ Newbie
 
Registered: Jul 2010
Posts: 16

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by scasey View Post
I see these Webmin modules that appear to address firewalls:
FirewallD
Linux Firewall
Linux IPv6 Firewall
Shoreline Firewall
Shorewall6 Firewall

Suggest using the Webmin search function...enter "firewall" (no quotes) there...
Thanks I started with CFS but it has a step learning curve, I like FirewallD and the idea of zones but would like to see some more documentation on the webmin module as most of it is just standard man stuff.
 
Old 07-16-2018, 08:59 PM   #4
JamesMore
LQ Newbie
 
Registered: Jul 2010
Posts: 16

Original Poster
Rep: Reputation: 0
So FirewallD is installed and I want to manage it from webmin but I cant see how to add a ip address to a rule

Any one able to help or do I have to use the CLI
 
Old 07-17-2018, 05:11 PM   #5
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Yawnstown, Ohio
Distribution: High Sierra
Posts: 9,117
Blog Entries: 37

Rep: Reputation: Disabled
https://doxfer.webmin.com/Webmin/FirewallD ?
 
1 members found this post helpful.
Old 07-20-2018, 05:35 PM   #6
JamesMore
LQ Newbie
 
Registered: Jul 2010
Posts: 16

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by Habitual View Post
That is just a picture it does not print a 1000 words to me. I still cant see how to add a IP address to a zone from within "Webmin"
 
Old 07-20-2018, 05:56 PM   #7
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.5
Posts: 1,435

Rep: Reputation: 490Reputation: 490Reputation: 490Reputation: 490Reputation: 490
I'm not seeing how to do that with Webmin either, so I'm learning firewall-cmd.
Excerpt from a bash shell script I wrote so I didn't have to remember what to do to block 1 IP address
Code:
firewall-cmd --add-rich-rule="rule family='ipv4' source address='$IP' reject"
firewall-cmd --permanent --add-rich-rule="rule family='ipv4' source address='$IP' reject"
...where $IP is passed in from the command line. The first line make an immediate change; the second line makes it survive reboots.
Code:
man firewall-cmd
which is onerous...I've done a lot of web searching, too.

I'm not finding a GUI or web interface yet. Nor have I looked at the other webmin modules, yet.

NOTE: I'm on CentOS 7 so ymmv
 
Old 07-21-2018, 12:01 PM   #8
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Yawnstown, Ohio
Distribution: High Sierra
Posts: 9,117
Blog Entries: 37

Rep: Reputation: Disabled
#yakattack

https://doxfer.webmin.com is Webmin's Documentation Portal.

Webmin_Modules >
I see several possible entries under modules...(these may not all be present/enabled on your install).
FirewallD
IPFilter_Firewall
Linux_Firewall

One of those has the solution. Maybe two modules are involved. Perhaps, perhaps not.
I don't know what you mean by "easy way to manage a firewall". Hire an Admin? Or Learn to be One.
English is what I got at Documentation Portal
You can select the Documentation Portal's language but that only accommodates the wiki-driven site
elements. The actual content seems to remain in English.
I apologize for the brevity here.

If you "I like a gui so I can look at logs and tweak other things" - then webmin is the place.
I liked looking at logs so much, that I built a solution. an "ELK stack"

Both tasks can be accomplished at a terminal prompt "easily". IMHO

"help", "easy"...
No hablo. Lo Siento.

Buenas Suerte.
 
Old 07-25-2018, 04:24 AM   #9
AwesomeMachine
LQ Guru
 
Registered: Jan 2005
Location: USA and Italy
Distribution: Debian testing/sid; OpenSuSE; Fedora; Mint
Posts: 5,327

Rep: Reputation: 966Reputation: 966Reputation: 966Reputation: 966Reputation: 966Reputation: 966Reputation: 966Reputation: 966
You could try a firewall distro.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: How to Manage CentOS 7 Server with Webmin LXer Syndicated Linux News 0 08-18-2017 02:39 PM
LXer: Manage Linux services with Webmin LXer Syndicated Linux News 0 11-21-2013 09:00 PM
easy to manage cms like application comeatmanish Linux - Software 1 05-17-2012 01:08 AM
LXer: How To Manage Unix & Linux Systems Using Webmin LXer Syndicated Linux News 0 12-20-2008 08:30 AM
Webmin - very easy to use GUI for newbies! Micro420 Linux - Newbie 1 08-03-2006 03:54 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:39 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration