similar to: blocking outgoing ports with iptables

I would add the below: -Recommend using CentOS 4.0 -Use squid rpm, no tar (this is for new users I'm guessing). -Recommend using etherape and iptraf (available as rpms) for a graphical overview of traffic. http://etherape.sourceforge.net/ -Recommend the use of chkrootkit, and TCP Wrappers (at the least put ALL: ALL EXCEPT PARANOID in /etc/hosts.allow) to protect servers. -Provide some

Hello, I see manage of firewall in CentOS (called security), and seems difficult to manage, not enough powerful. I am searching a middle term between scripts of iptables to manage and Security manager of CentOS. I know FireStarter, another similar? -- Devel in Precio http://www.pas-world.com

I'm trying to NFS-mount a CentOS directory on my Fedora laptop, but I find I can only do this is I turn off the firewall on the CentOS server. If instead I go to system-config-securitylevel-tui on the server, and allow NFS4, this does not do the trick. Nor does allowing port 2049. What do I need to allow? [I should say that the CentOS server is remote, and difficult to access directly; that

Hi, I'm using the preconfigured firewall that comes with CentOS 5. I configure it with system-config-securitylevel-tui, close all ports except SSH, and then open only the ones I need. Right now, on one of my desktops, I've installed AMSN, which requires opening a series of ports. I've configured the app to use ports 7000 to 7010 (TCP and UDP). When running

Hello, When i did the basic CentOS install i selected incoming ssh, ftp, www, and smtp in the configuration dialog. Now my needs have changed and i'd like to add to those rules with samba, this box runs it, and bacula the client. I was wondering a howto on what to put, i know the ports i need, or a web configuration util? Thanks. Dave.

I need a decent, easy, firewall on Centos. This is for test systems, so I do not need a lot. For 'a lot', I use and Astaro firewall. I had used Firestarter once, but found out that it cannot handle routing between a public and private network. Basically saying this is impossible. Of course, if your private network is addressed per RFC 1918 (that I co-authored), I can understand

Hello I have set up NAT with iptables for an openvpn connection, so that the VPN server could give VPN clients access to the entire sub-net of the server. The probelm is if I start system-config-securitylevel to say disable the firewall, and then again to enable it, my iptable rules are gone ! I did run `service iptables save` before. Is there something I can do to prevent this ? Is there a

In following up on the rsh "problem" I was having earlier, I decided to try out the suggestion Felipe sent about using system-config-securitylevel-tui to open up ports 513 and 514, but that doesn't seem to do the job, either. # iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination RH-Firewall-1-INPUT all -- anywhere anywhere

Hello everyone, I am setting up a new system for use as a testing/demo/trial-and-error system. I have installed CentOS 4.4 on it. There is not an X-environment, so I will need to fix this from the command line (via ssh access). I am trying to do an nfs export from this box to another on my internal home network. I have figured out that it is a firewall issue on the CentOS box (I turn off the

Hi, With the release of 5.2 "yum update" seems to be upgrading our computers from CentOS 5.1 to CentOS 5.2. I note from release notes for 5.2 that you are only supposed to get 5.2 if you type in "yum upgrade". On two seperate machines entering "yum update" has resulted in yum geting repo information for packages with versions that only exist in the base

Hi All, Hi All, MySQL 5.0.77 on CentOS 5.4 MySQL is running, my Wordpress stuff is working, but I cannot connect to the server from my house. This server is in my house, however, but on a public IP, behind a firewall, etc. I checked my hardware firewall (a dedicated UnTangle system) and that is successfully allowing the passage. I know this because the firewall shows: 2009-12-22 6:29:41 am

Hi, I've been contacted by a local training center specialized in Oracle databases, to train a group of four administrators to use Linux. They're supposed to use Oracle Linux (more exactly "OL5"), which I understand is some specialized version of Red Hat Enterprise Linux. I'm reasonably proficient with CentOS. I've been using it exclusively on desktops and servers

Hi, This is semi-OT, but is Centos-related. I'm looking for an IPTables GUI to help us with our expanding network configuration. I know there's plenty out there, but most of them seem to manage the firewall on the computer on which they run, or only handle one firewall at a time. I need one that can easily manage multiple firewalls from some sort of central location/repository, i.e.

iptables -I INPUT -s 0.0.0.0/0 -p tcp --dport 5901 -j ACCEPT I'm going strictly off memoy here so you may need to man iptables. :) hadi motamedi <motamedi24 at gmail.com> wrote: >Dear All >To open a port , I know that I need to go to "System -> Administration -> >Security Level and Firewall" -> Other ports and then I can open port-5901 as >tcp

Hi List, I am not familiar with the commands of IPtables so I want use tools on top of it. What do you suggest. Can I make test of it inside CentOS on top of VMWare server with only one LAN inteface? I try to use Pfsense, I believe it has easy to understand GUI but it fails to install on my desktop machine to test, maybe due to hardware comaptibility. Kernel panic during boot even after disabling

Hey every one, Over the past week I have been exploring puppet and had been ignoring an oddity in its output that Luke helped me figure out today. It all started with trying to configure puppet to configure iptables using redhats utility system-config-securitylevel-tui on rhel4. I was able to get it up and running using the following configuration: node default{ firewall {rhel4:

I responded to a post in the Dell poweredge mailing list earlier today. My answer was off the top of my head, with a bit of experimentation. The content may be useful in the Cenyos context as well to admin's looking to strip the size of an install to the bare bones. Comment welcomed. Can anyone see any packages which I have missed? -- Russ Herrold ---------- Forwarded message

Hi all, ?What iptables do you use to manage iptables? ?Or maybe not? Simply curiosity, so I'm coming from openSUSE and in that distro there is a YaST module front-end (YaST firewall). TIA. -- Jordi Espasa Clofent PGP id 0xC5ABA76A #http://pgp.mit.edu/ FSF Associate Member id 4281 #http://www.fsf.org/ -------------- next part -------------- A non-text attachment was scrubbed... Name:

Hi Ignacio, apology for my English... my name is George Ginis... what you mean running/accessible via firewall and system-config-securitylevel? in XP or CentOS? and what is this? the PuTTY I have in XP or in CentOS? thank for your answer... By default CentOS doesn't have ftp, telnet, nor rlogin services running/accessible via firewall. Use an ssh client such as PuTTY. And don't forget

Hi, just to avoid re-inventing the wheel, is there any document that can help me reduce even further a "minimum" installation of Centos 4.4 (BTW can you say 600mb is minimum)? I am in the process of creating a small Centos-4.4-based Asterisk box and I need to boot it from a CF card. Deleting useless packages will help me do what i want. Example: even a minimum install of Centos 4.4 (or