firewall setup 1

[garwain]

I have a server that I'm almost ready to connect to the 'net and I'm wondering about setting up a firewall. I've seen that redhat 7.1 has a firewall that installed by default.

Any ideas/suggestions for the configuration would be appreciated as I have never dealt with a firewall before.

This system will be running
APACHE
POP3 server
FTP
TELNET
MySQL or PostGres
webmin

this is the only machine that will use the internet connection.

thanks for any info you can provide
Ben

 

[JorGeVaL]

In your Linux search for a HOW-To that deals with the firewall issue.

You better use other tools, i mean use qmail or postfix instead of Sendmail, use SSH instead of Telnet, Webmin is a good administration tool but if you connect you box to the internet could be a secure hole.

I Hope this can Help.

 

[meekrob]

My suggestion is not to use the default stuff. If you don't know what you are running then you don't know if you are secure. Take a look at this Developerworks page, you have to fill out a brief registration but it's worth it.

Check out this tutorial:

http://www-105.ibm.com/developerwor...A7F41AE725B03E1D86256A46005DB972?OpenDocument

Check out this page for more dw stuff:

http://www-106.ibm.com/developerworks/linux/?loc=dwmain

After you get your firewall setup I suggest you check your application security on anything that has a port running on the outside world.

For SMTP I suggest Qmail or Postfix, and do not recommend sendmail as root exploits are discovered from time to time.

http://www.qmail.org

Apache is great, and has a stellar security record.

http://www.apache.org

Running telnet on a public network is stupid, and an invitation to get hacked. Use SSH instead.

http://www.openssh.org

Be very careful with FTP. If you are not providing public access you are much better off using SFTP. If you have to use an ftp server make sure it is secure.

http://www.openssh.org

Use your firewall to restrict access to webmin, so that only a certain ip can connect.