[CLUE-Tech] Linux Firewalling
Jeremiah Stanley
miah at miah.org
Sat Feb 10 15:52:59 MST 2001
I know there has been quite a bit of discussion on this list about this
but I am wanting to add another layer of security to my network. Currently
I am using xinetd to protect my dangling services and SSL/SSH to encrypt
all other network traffic (over DSL).
The box that needs to be firewalled/have packets filtered runs Apache
(port 80 and 443), imap and pop3, nfs (which I would like to restrict to
my subnet), ssh, mysql, dns, sendmail and a game called dopewars (runs on
port 7902). All other ports I would like to have reject traffic. I have
one IP and one NIC.
Does anybody have any examples of a similar configuration that I can take
a look at? I've read the howto's on firewalling and ipchains, and while
they are good references they talk mostly about masquerading and that
isn't something that I'm doing with this box.
Also once I have this setup what tools are good to test with? I know of
nmap as a port scanner and not much else in this area.
Thanks,
Jeremiah Stanley
--
A witty saying proves nothing.
-- Voltaire
More information about the clue-tech
mailing list