Hi guys just wanna know if Linux7.1 already included firewall by default. As I just purchase a server and need to configure it all by my self.

is linux7.1 without firewall already safe enough..?

Thanks guys

It should have ipchains and/or iptables, depending on how it was set up. I would not trust the default rules they set, though. You will need to configure it to your specific needs. Also, you should turn off any unused services, and configure your hosts.allow and hosts.deny for starters.

Thanks for the tips RutRow right now I'm using webmin to configure my server. To your opinion is it good or bad?

and about hosts.allow and hosts.deny what it is actually do to the server is it preventing some sort of hackers attack or something else?

and what else should I do so that the performance of my server is on top.

Thanks

plz tell me about webmin tool/command ,I never use this command.

webmin is very good and userfriendly interface software that enable you to manage your server with Linux os thru your web browser.

mithilesh: you could get this documentation or software just by visiting http://www.webmin.com/webmin/

it is FREE , cool and I begin to like it. So instead of typing in shell prompt you just click and click and click, click :)

Anyway I just come accross with IP-Tables and it is sounds good once I read its documentation.

Just out of curiousity, do most people using IP-Tables to protect their Linux server ?

and is it possible to use IP-Tables and IP-Chain at the same time ?

and about hosts.allow and hosts.deny what it is actually do to the server is it preventing some sort of hackers attack or something else?

These two files are for allowing/disallowing users to connect, but only work with programs compiled to use libwrap. You certainly don't want to only rely on this alone to protect your server, but it can provide a useful layer.

Iptables is a recent development used with the 2.4.X linux kernel. Ipchains is used in the 2.2.X kernel. The 2.4.X kernel can be configured to use either, but I don't think it can use both at the same time.

Iptables has more features and aparently is more intuitive to set up than ipchains.

I'm considering of having IP-Tables instead of IP-Chain it seems that it is more popular.

I'll have nessus to scan my server and see how vulnerable she is :)