Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Firewall problems...

Status
Not open for further replies.
TheBigBasicQ

TheBigBasicQ

Programmer
Dec 20, 2001
107
0
0
IN
I am using Jay's Firewall configuration utility to configure my iptables firewall. Originally when configured it, all ports were stealthed. But now some of my ports are visible. Ports 25(SMTP) and 53(DNS) are shown as closed and open respectively. Also, I am getting some errors when my system boots up:
ifup: /etc/sysconfig/network-scripts/ifup-post: network-functions: line 224: syntax error: unexpected end of file

ifup: /etc/sysconfig/network-scripts/ifup-aliases: network-functions: line 224: syntax error: unexpected end of file

I havent changed any settings for quite sometime now so how did these ports become 'unstealthed'?

Also, I have set all ICMP requests to be dropped. Is that alright?

Where can I view the logs? I cant find them anywhere in my /var/logs/messages etc...

I am using RedHat 9 and am a newbie so please explain me in detail.

Nobody is perfect =(
.
.
.
.
I am nobody =D
 
Sort by date Sort by votes
Sorry - but setting up a firewall is NOT a newbie issue.
You have to have a deep knowledge of your system and on networkprotocols/ services too.
 
Upvote 0 Downvote
Actually, you could use the Mandrake Multi Network Firewall. It's pretty self-explanatory.


If you have a small network, you can do Coyote Linux. It runs off a floppy.


This really is not a newbie issue, but you can't buy this kind of experience at Walmart.

Red Hat has become somewhat bloated. A lot of the specifically designed firewall products can run on very minimal machines.

You can get a decent hardware-based firewall for about $50 nowadays. I saw a Belkin a couple weeks ago for $9.95
 
Upvote 0 Downvote
How do you check to see if your ports are open? If you expect a connection to come in on that port, then it should be open. Stealth (dropping ICMS packets) usually means that your machine will not respond to an ICMP request but doesn't stop people from connecting to it. IPTABLES will log everything in /var/logs/messages if you append the "-j LOG" to your ruleset. It will be easier for you to spot them if you used the prefix option -j LOG --log-prefix "FIREWALL LOG: ". Now you can do a cat /var/logs/messages | grep "FIREWALL LOG" to it all.

Anything can go wrong. It's just a matter of how far wrong it will go till people think its right.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

jamescpp
  • Locked
  • Question
Disabling Firewall/iptables on CentOS 7??
Replies
2
Views
88
jamescpp
jamescpp
maxthedork
  • Locked
  • Question
Having problems with Ubuntu Netbook Remix 10.04
Replies
3
Views
53
maxthedork
maxthedork
centraladminman
  • Locked
  • Question
Firewall/Router software for Ubuntu
Replies
2
Views
33
jstreich
jstreich
lazyrunner50
  • Locked
  • Question
rpmbuild problems
Replies
0
Views
24
lazyrunner50
lazyrunner50
smeyer56
  • Locked
  • Question
Ubuntu Grub dual boot problems with Windows 1
Replies
10
Views
78
smeyer56
smeyer56

Part and Inventory Search

Sponsor

Back
Top