Dear All I need to put my centos 5.6 server as firewall server in fron of a windows-running node before connecting it to the net. Can you please let me know what stuff do I need to put on my centos server? Thank you
On 7/15/11, hadi motamedi <motamedi24 at gmail.com> wrote:> Dear All > I need to put my centos 5.6 server as firewall server in fron of a > windows-running node before connecting it to the net. Can you please > let me know what stuff do I need to put on my centos server? > Thank youHadi; Under most circumstances, CentOS 5.6 should come with the software you need: iptables (and, possibly, iptables-ipv6). There's a wealth of information about configuring iptables on Google. To get you started, this looks like an interesting overview: http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-fw.html Also, if you get daring and want to try writing rules for yourself, Mike Harris has a nice template configuration for iptables: http://mharris.ca/iptables/mharris-iptables-example-config-1.2.txt Read up on iptables, understand the concepts behind it. This is a good thing to take slow if you're not familiar with it. Security is not to be rushed. :) Cheers, Cody Jackson
You can use pretty standard tools:- iptables etc. You just need a minimum sever install with maybe some web based GUI to manage the box from other machines. You can have a look at webmin (www.webmin.com) which offers nice web interface and is popular in hosting industry as free admin web ui. - SZQ On Sat, Jul 16, 2011 at 10:03 AM, hadi motamedi <motamedi24 at gmail.com>wrote:> Dear All > I need to put my centos 5.6 server as firewall server in fron of a > windows-running node before connecting it to the net. Can you please > let me know what stuff do I need to put on my centos server? > Thank you > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20110716/6d537f77/attachment-0001.html>
On 7/16/11, SZ Quadri <sz at quadri.in> wrote:> You can use pretty standard tools:- iptables etc. You just need a minimum > sever install with maybe some web based GUI to manage the box from other > machines. You can have a look at webmin (www.webmin.com) which offers nice > web interface and is popular in hosting industry as free admin web ui. > > - SZQ > > On Sat, Jul 16, 2011 at 10:03 AM, hadi motamedi <motamedi24 at gmail.com>wrote: > >> Dear All >> I need to put my centos 5.6 server as firewall server in fron of a >> windows-running node before connecting it to the net. Can you please >> let me know what stuff do I need to put on my centos server? >> Thank you >> _______________________________________________ >> CentOS mailing list >> CentOS at centos.org >> http://lists.centos.org/mailman/listinfo/centos >> >Thank you for your help. I tried to get it as 'yum install webadmin*' but unsuccessful. Can you please confirm if the spelling is correct?
hadi motamedi wrote:> Dear All > I need to put my centos 5.6 server as firewall server in fron of a > windows-running node before connecting it to the net. Can you please > let me know what stuff do I need to put on my centos server? > Thank you > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos > >You might be interested in shorewall[1]. It has config file and extensive documentation. You tell it what you want and all iptables are automatically set. It also has webmin module. There are rpm's for CentOS 5 but I think they would be OK also on the CentOS 6. [1]: http://www.shorewall.net/ Ljubomir
On 7/16/2011 12:33 AM, hadi motamedi wrote:> Dear All > I need to put my centos 5.6 server as firewall server in fron of a > windows-running node before connecting it to the net. Can you please > let me know what stuff do I need to put on my centos server? > Thank you > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centosI would sugget a dedicated firewall distro like untangle, pfsense, smoothwall,...etc etc etc