[Gllug] Basic Firewall Policy
Harry Mantheakis
harry at mantheakis.freeserve.co.uk
Thu Feb 12 15:43:49 UTC 2004
Thank you for all your responses.
The 'Sheilds Up' test site was a great idea - although mainly aimed at
Windows systems, it is still useful to test what state my firewall is in, so
thanks for that.
Simon Rumble's tip about getting hold of scripts was good too - Google has
yielded up several script resources, which I shall investigate
Jason was asking about what server applications I am running. The answer is
HTTP and HTTPS to start with, though it's likely I shall want to add FTP and
CVS later. SSH will probably rear its head sooner or later, though I have
not yet used that facility.
As for connecting my Linux to my Windows box, well, I haven't started on
that, but at this rate of progress I think I shall save that for another day
altogether - and make do with floppies in the meantime :-)
Bruce Richardson's idea of shutting everything down, and opening ports on a
need-to basis makes a lot of sense.
The more I think about it, the more I am inclined to adopt Bruce's strategy.
Sheilds Up seems to show that Red Hat's default firewall setting basically
blocks everything. So I could start with that, and set a couple of rules to
cover traffic on ports 80 and 443, and then add rules as I go along.
Hmm... Now, why didn't I think of that myself :-)
Thanks to everyone.
Regards
Harry Mantheakis
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list