Hi Everyone, For all the folk here on this list that offer VPS hosting, do you guys just give a VPS to a customer in a non-firewalled state? Cheers _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
> Hi Everyone, > > For all the folk here on this list that offer VPS hosting, do you guys just give a > VPS to a customer in a non-firewalled state? > > Cheers >It''s not really specific to XEN, but at $datacenterjob, we deploy servers with the host firewall blocking everything except for ICMP-PING, and SSH or RDP. Typically, fail2ban is also installed on linux servers to kill off the lazy bruteforcers. Lastly, we drop the netbios ports using ACLs at our border routers. _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Yes. debootstrap+kernel+ssh. Other question is out of vps service. В Втр, 24/08/2010 в 22:10 +0100, Jonathan Tripathy пишет:> Hi Everyone, > > For all the folk here on this list that offer VPS hosting, do you guys > just give a VPS to a customer in a non-firewalled state? > > Cheers > > _______________________________________________ > Xen-users mailing list > Xen-users@lists.xensource.com > http://lists.xensource.com/xen-users_______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
On Wed, Aug 25, 2010 at 12:05 AM, Nathan Eisenberg <nathan@atlasnetworks.us> wrote:> It''s not really specific to XEN, but at $datacenterjob, we deploy servers with the host firewall blocking everything except for ICMP-PING, and SSH or RDP. Typically, fail2ban is also installed on linux servers to kill off the lazy bruteforcers. Lastly, we drop the netbios ports using ACLs at our border routers. > > > _______________________________________________Nathan, as matter of interest, do you have pre-configured ISO''s or something with the firewall already setup, or do you do this manually? And, if it were for a XEN VM, would you do the firewalling on the dom0 host, or the domU guest? -- Kind Regards Rudi Ahlers SoftDux Website: http://www.SoftDux.com Technical Blog: http://Blog.SoftDux.com Office: 087 805 9573 Cell: 082 554 7532 _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users