Pingu
01-01-2002, 02:25 PM
Well, if I'm running ipchains and pmfirewall, do I need something like portsentry?
I hope some of you can share ideas/lnowledge on this :)
I hope some of you can share ideas/lnowledge on this :)
 | View Full Version : ipchains and portsentry shortfork 01-01-2002, 05:07 PM "need" might not be the best way to describe it. "Want" is probably better. I've got both, I don't believe it takes any more resources and Portsentry is pretty easy to configure so why not have it running. I belive it can give you a bit more protection... It sure gives me a bit more peace of mind! :D Shortness kprojects 01-02-2002, 02:10 AM Yeah, portsentry is always a good idea.. you can also grab logcheck from the same site to have it email you alerts.. Rob Pingu 01-02-2002, 04:51 PM Ok then portsentry stays. But... How do I configure pmfirewall for virtual sites which have different ip-addresses then the main one? I have a range of 14 (16) ip's. What's the best way to do this? webbcite 09-25-2002, 05:17 PM Pingu, Did you ever figure this out? I have mutiple IP's as well that are getting blocked...other than the main server IP. Any examples you can share? joubarani 09-30-2002, 09:45 AM Hi; We installed IPChains on our raq 4 i and tried to configure and customize the template and made active the following protocols from the webmin interface of the IPChains module: DNS, POP3, SMTP, HTTP, HTTPS, Webmin but when we tried to save the server stopped. What is the wrong? Does anybody have a solution? Thanks for your fast response. Joubarani cyrusTvirus 09-30-2002, 10:17 AM What do you mean with "stopped" the they webserver stopped eg httpd or did your server (the whole box) stop?? Did you try restarting it ?? flamegrill 09-30-2002, 07:25 PM The following goes into /etc/sysconfig/ipchains and is called when u run /etc/rc.d/init.d/ipchains start|restart etc. Edit it as you wish, its setup fairly well IMO. You may want to add in some directives for Java or other such things. it should be fairly easy to follow the example below. :input ACCEPT :forward ACCEPT :output ACCEPT -A input -s 0/0 -d 0/0 25 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 110 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 80 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 21 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 22 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 81 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 443 -p tcp -y -j ACCEPT -A input -s 0/0 -d 0/0 53 -p tcp -y -j ACCEPT -A input -p udp -s 0/0 -d 0/0 53 -j ACCEPT -A input -s 0/0 -d 0/0 -i lo -j ACCEPT -A input -p tcp -s 0/0 -d 0/0 0:1023 -y -j REJECT -A input -p tcp -s 0/0 -d 0/0 2049 -y -j REJECT -A input -p udp -s 0/0 -d 0/0 0:1023 -j REJECT -A input -p udp -s 0/0 -d 0/0 2049 -j REJECT -A input -p tcp -s 0/0 -d 0/0 6000:6009 -y -j REJECT -A input -p tcp -s 0/0 -d 0/0 7100 -y -j REJECT HTH, Regards, Paul |