[CLUE-Tech] Linux Firewalling
Brandon N
bneill at yahoo.com
Sat Feb 10 19:06:40 MST 2001
kernel 2.4 or 2.2?
I have a firewall set up, i can show you what I did, as for testing,
think like a cracker, try accessing the services from the outside, use
nmap, satan (is that still around) and read Linux System security for
other security steps, (best PAM refernce I've seen)
--- Jeremiah Stanley <miah at miah.org> wrote:
> I know there has been quite a bit of discussion on this list about
> this
> but I am wanting to add another layer of security to my network.
> Currently
> I am using xinetd to protect my dangling services and SSL/SSH to
> encrypt
> all other network traffic (over DSL).
>
> The box that needs to be firewalled/have packets filtered runs Apache
> (port 80 and 443), imap and pop3, nfs (which I would like to restrict
> to
> my subnet), ssh, mysql, dns, sendmail and a game called dopewars
> (runs on
> port 7902). All other ports I would like to have reject traffic. I
> have
> one IP and one NIC.
>
> Does anybody have any examples of a similar configuration that I can
> take
> a look at? I've read the howto's on firewalling and ipchains, and
> while
> they are good references they talk mostly about masquerading and that
> isn't something that I'm doing with this box.
>
> Also once I have this setup what tools are good to test with? I know
> of
> nmap as a port scanner and not much else in this area.
>
> Thanks,
> Jeremiah Stanley
> --
> A witty saying proves nothing.
> -- Voltaire
>
> _______________________________________________
> CLUE-Tech mailing list
> CLUE-Tech at clue.denver.co.us
> http://clue.denver.co.us/mailman/listinfo/clue-tech
__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail - only $35
a year! http://personal.mail.yahoo.com/
More information about the clue-tech
mailing list