Networking :: Add Ports In Iptable /firewall Using Command?
Feb 18, 2011I want to know how to add (ports to open)in firewall using command or scriptor any ather method
View 4 Replies
ADVERTISEMENT
Server :: Command For Iptable Rule To Add In Chain RH-Firewall-1 To Block Ftp Port?
Mar 10, 2011tell me the command for iptable rule to add in Chain RH-Firewall-1 to block ftp port & the ftp server was configured in public ip address,i searched in google but i did'nt get the exact command for iptables rule in Chain RH-Firewall-1.
View 3 Replies View RelatedGeneral :: Add Ports In Firewall Using Command Or Script?
Feb 18, 2011i need to add some ports in firewall(RHEL5) how can i do it using command or script or anything?? i know one method from graphic firewall wizzardtell me other shortcut to add more then one ports
View 2 Replies View RelatedNetworking :: Setting Up Firewall/locking Down Ip's And Ports?
Jun 29, 2010I want to lock down my server to allow only certain ip addresses and ports in. I was thinking of doing this through the iptables but someone sugguested I used the hosts.allow and deny files to allow who can access the system. What do people suggest? If I"m trying to ensure no ip's can access my system except the ones I want, how would I do this with just the allow and deny files?
View 4 Replies View RelatedUbuntu Networking :: Firewall Ports For Smb Printer Sharing?
Feb 6, 2010In my firewall I have these ports open:
21
143
110
[code]...
Networking :: Iptable Command To Allow Traffic To Internet But Not Subnet?
Jun 3, 2010My internet gateway is 192.168.1.1 with a 255.255.255.0 subnet mask. I have a router connected to it running ddwrt with an ip 192.168.2.1/24 creating a second subnet behind it. I have a tenant moving in that will be wirelessly connecting to the ddwrt router, so to the 192.168.2.0/24 subnet. What I am looking for is a rule that will pass internet traffic to and from this client, but restrict him access from the 192.168.1.0/24 subnet otherwise. The ddwrt router is connected to the 192.168.1.1 gateway through its wan port, btw. For example, the client would get an ip address of 192.168.2.100 wirelessly from the ddwrt router. I want him to be able to surf the internet through the 192.168.1.1 gateway, but not to have any other access to the 192.168.1.0/24 subnet (ideally not have access to ANYTHING besides the internet).
View 4 Replies View RelatedNetworking :: Open Ports 5198/udp And 5199/udp On A Slackware Based Firewall?
Apr 20, 2010How do I open ports 5198/udp and 5199/udp on a slackware based firewall?
View 2 Replies View RelatedDebian Configuration :: Firewall Up But Ports Still Open
Sep 9, 2011I have just switched over from firestart to gufw.I have set all incoming traffic to deny and all outgoing traffic to allow.I have rules set for incoming traffic, and have only opened 1 port on my system for torrents. My router also only has the same port opened which again is for torrents.I use "Network Tools" which is included on squeeze and do a portscan of 192.168.1.100 and 127.0.0.1 I get all kinds of crazy ports coming back as opened. What is even stranger is if I do a few scans, these ports change, so one port on one scan may come up as open, then it will disappear and a different port may show as open.
Mind you none but the torrent port is forwarded in my router, I have no idea what any of these other ports are, or why they are even showing up.What the heck is going on? I dont think this is normal? Am I at any higher risk for attack?
OpenSUSE :: Open Firewall Ports Without Yast?
Jan 23, 2011how to open firewall ports without using yast. The reason I'm asking is because I'm working on a .sh script for the installation of a couple of programs. Some ports need to be open for the programs to work, I find it really annoying to go to yast and type the ports manually every time. I've looked at /etc/sysconfig/SuSEfirewall2 but can't seem to find anything, I also know that after the changes I will have to stop start the firewall by running:
SuSEfirewall2 stop
SuSEfirewall2 start
Software :: Firewall Ports For Mail Server?
Jan 27, 2011Which ports should be open for a mail server for INPUT CHAIN? When I use firewall rules (allow just a few ports), some users complain that they're not receiving messages from other domains. When the firewall is disabled these ports show as open:
Code:
Not shown: 9987 closed ports
PORT STATE SERVICE
21/tcp open ftp
[code]....
Which ports should be enabled?
OpenSUSE Network :: Firewall - Can Open All Ports For One IP Address
Apr 27, 2010I have a couple of openSUSE 11.2 machines and each is directly connected to the Internet (they are not behind a router, firewall, etc). I want them to be able to communicate without any firewall restrictions, but keep the firewall rules for all other IP addresses. Is this possible? the software package I'm trying to use randomly chooses a port to use in the range of 32768-61000 and I don't feel comfortable having a port range that wide open on both machines.
View 5 Replies View RelatedUbuntu Servers :: Ports Not Open - Built In Firewall ?
Jul 26, 2010I am having trouble getting ports to open, on the router that the server is connected to it is set to DMZ, so everything passing through the router should go to the server right? but when I use a port checker none of the ports that I need to be open are. so my question is does ubuntu have a built in firewall that no one told me about? or something that would block me from having the ports open?
View 3 Replies View RelatedUbuntu Servers :: Firewall / Router Forward Ports
Sep 8, 2010I have linux server setup on a network with 2 interfaces. One (eth0) is connected to the regular network and the other (eth1) has a DHCP server and transparent web cache listening on it. The machines connected on the eth1 side are on a different subnet and the linux server is there gateway. Untrusted machines are introduced to this network to keep them isolated.
This isolation works well, too well. There are a small set of resources on the regular network I would like to make available to machines on untrustworthy network. I think I need to use iptables but alas I've had no luck in piecing together the command I need (in one case looking myself out and having to physically reset the machine).
Ubuntu Security :: Some Firewall Ports Were Detected As Being Closed
Nov 12, 2010What are the security implications of closed ports?
View 5 Replies View RelatedGeneral :: CentOS5.4_x64 - Open Up Ports In Firewall?
Apr 1, 2010I would like to ask today how to open up specific ports in Linux firewall (iptables). Recently I have changed the SSH port in server from 22 to 30022 by typing
Code:
# vi /etc/ssh/sshd_config
Code:
Port 30022
"/etc/ssh/sshd_config" 111L, 3027C
And then for the iptables configuration file:
Code:
# vi /etc/sysconfig/iptables
[code]....
How to configure the iptables properly so that my Windows PC can access the Linux with port 30022?
OpenSUSE Network :: 11.3 With LXDE: Manually Defined Ports Are Not Getting Through The Firewall?
Sep 21, 2010I'm using opensuse 11.3 32bit with LXDE. I have configured an apache tomcat server listening on port 8080. Yast was used to open udp 8080 and tcp 8080 in the firewall by manual entry under the advanced button of 'allowed services' menu.Another system was used to access the tomcat server via a firefox webbrowser. The attempt was unsuccessful. The url used was [URL]. firefox webbrowser keeps showing'connecting ...' until timeout. I'm assuming that inspite of the specified port openings in the firewall, it is somehow ignored. If I were to disable the firewall, then I can access the tomcat server with the firefox webbrowser.
View 2 Replies View RelatedSecurity :: SonicWall Firewall Or Appliance Open Ports NMAP?
Mar 17, 2011I am trying to understand why when running nmap against a SonicWALL firewall at a remote location, the SonicWall firewall is saying that most of its 65535 ports are open? I know this cant be correct and remember reading about how some of these network appliances are setup this way to thwart off attacks.
View 7 Replies View RelatedCentOS 5 :: Postfix + Procmail - Pop And Imap Ports Blocked By Firewall
Jul 11, 2009Small server running 5.3 - stock postfix configured to use Maildir. Dovecot configured but both pop and imap ports blocked by firewall. Access to mail is via Squirrelmail via https. Configured to virus scan via ClamAV. Works just fine. Now I want to add procmail filtering. So I create these two files - ~/.forward and ~/.procmailrc in my user home dir: "|exec /usr/bin/procmail -f- || exit 75 #mpeters"
View 1 Replies View RelatedOpenSUSE Network :: Need To Alter Services Files If Ports Open In Firewall?
Jan 11, 2011I have a question about /etc/services file. If I open ports in firewall, do I need to alter /etc/services file in order for certain apps to work?
kpasswd 464/tcp # kpasswd
kpasswd 464/udp # kpasswd
# Theodore Ts'o <tytso&MIT.EDU>
# 465 is illegal used by eMail Server
smtps 465/tcp # eMail Server
#urd 465/tcp # URL Rendesvous Directory for SSM
igmpv3lite 465/udp # IGMP over UDP for SSM
# Toerless Eckert <eckert&cisco.com>
digital-vrc 466/tcp # digital-vrc
digital-vrc 466/udp # digital-vrc
Above example shows if 465 tcp isn't altered, Postfix MTA fails to listen on 465 tcp port. What if there's a bigger span 3000:7000 TCP/UDP, is there a need to alter each line by hand?
Security :: Firewall Running Perfectly - No Wide Open Ports Detected
Dec 22, 2009I now have a firewall up and running: almost perfectly. When I use nmap and perform the most comprehensive scan I can think of, it cannot detect any wide open ports (unless bittorent is running) and cannot fingerprint the OS. My last 2 questions about my firewall (I am very happy now) are:
It seems as though Firestarter has been "abandoned" by the developers, and that gufw is more current. Does it really matter which firewall I use because don't they all do the same thing? I like firestarters system tray icon a lot. 2nd question is I have two open|filtered ports. Are these still pretty well protected?
It is very pleasing to see that I have no open ports, because if you were an experienced Windows user like I was, you got used to the fact you were going to have open ports no matter what. Linux's builtin firewall completely destroys the expensive and useless scams they call Norton and McAfee. Linux officially rocks now
Security :: Public Facing OpenVPN - Open Any Ports On The Router / Firewall
Feb 14, 2011Within the documentation of example OpenVPN setups there is a setup that shows an OpenVPN Server with two network interfaces. One interfaces is plugged into the public internet network and the second interface is plugged into the private network.
Normally I assume that it would be best to place the OpenVPN system inside the network behind the router and firewall and open only the ports needed on the router to allow access to the OpenVPN system. All other router ports would be closed. This is the first example they show. To see what I am talking about see page(s) 6-7 here -> [URL]
If one were to use the two interface public facing setup, when would that setup best be justified? I guess if you didn't want to open any ports on the router/firewall then this could be justified but then you have to lock down this public system individually instead of having it protected by the network firewall.
OpenSUSE Network :: Make Firewall Accept A Range Of Ports (say 8000:9000) Because Im Using Mpd ?
Mar 6, 2011i have two questions and thought that anyone here could have the answers.first things first,i want to make firewall accept a range of ports (say 8000:9000) because im using mpd process manager to make some parallel processing, does anyone know the command that satisfy this?
the second thing is, when i open a range of ports like that, it would put my system at risk if some bad guys somehow identifies this range, is there is anything that solves that matter(i.e. makes the firewall monitor the packet, if its an mpd accept if not drop)
Networking :: Setup Firewall / Sys1 Is Not Connected To Firewall For Testing Purpose?
May 18, 2010I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.
the IP assignments are follows :
sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )
IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank
sys2 firewall ,IPTABLES )
code....
what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..
then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.
OpenSUSE Network :: Firewall Setup / Open RTP UDP Ports (port_number : Port_number)?
Aug 16, 2010How to open RTP UDP ports (port_number : port_number) in openSUSE 11.2 firewall with yast?
View 2 Replies View RelatedOpenSUSE Network :: Firewall Yast2 Shows Ports Open, Nmap Shows Them Closed?
Jan 8, 2010I'm encountering a strange problem. I need to open and forward all UDP and TCP ports related to VoIPtelephony (5000:32000) in the Suse 11.1 server that's acting as router/firewall in our setup. The ports must redirect to a Asterisk server in the local network. (This server has the IP adress 192.168.0.3)I've opened ports in Yast (Firewall>Ports>Advanced) and putted in some masquerading rulesirewall>Masquerading):0/0,192.168.0.3,tcp,5000:31000,5000:310000/0,192.168.0.3,udp,5000:31000,5000:31000when I do a nmap localhost I get:Starting Nmap 4.75 at 2010-01-08 16:52 CETInteresting ports on localhost (127.0.0.1):
Not shown: 991 closed ports
PORT STATE SERVICE
21/tcp open ftp
[code]....
Networking :: How Many Rule Iptable Can Manage
May 12, 2010i'd like to know how many rule can manage iptable. I'm asking that because i'd to drop all traffric from my localnet to porn site. I've a database of porn site witch contain about 900 000 domains. I know there are solutions like squidguard. But for my linux box i'd to use iptable to prevent users access to porn site and other blacklist site.
View 1 Replies View RelatedNetworking :: Adding An Additional Iptable Rule?
Mar 4, 2011This is what I have currently running.
Code:
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT
iptables -A INPUT -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
[code]...
How do I add this to the ruleset, without doing the whole thing over again?
Code:
iptables -A OUTPUT -d 10.3.0.0/16 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
Networking :: Possible In Iptable \ Switching Destination IP To Source?
Sep 16, 2010Using iptables is there a way to switch the destination IP to become the new source IP and forward that connection.iptables store the src and dst IP in a variable for a particular connection?
View 2 Replies View RelatedNetworking :: Configuring Pptp + Iptable To Share Connection
Dec 27, 2010Here's my setup: Slackware 13.1 External IFace = eth0 / DHCP (assigned from comcast) Internal IFace = eth1 / 192.168.0.0/24 I've made it connect/authenticate, but I can't get anything to route through it..
[Code]...
Really wanting to try and get this setup to where all computers on my lan are forced through the VPN, i've tried most of all things I've googled, and no real luck.
Networking :: Check Older Iptable Rules That Were Loaded?
Oct 14, 2010Is there a way to check older iptable rules that were loaded? I accidentally overwrote my iptables and that has killed internet access to all computers in the intranet. I must have accidentally deleted some line in the iptable rules and cannot figure how to get it back to how it was. I am using Debian 5.05 by the way.
View 1 Replies View Related