Linux as a proxy server 2

[Zelandakh]

My Linux firewall (don't laugh) has all ports disallowed by default. I hope.<br>
<br>
SMTP is allowed through port 25. http is also allowed. I need to allow port 21 temporarily but how?<br>
<br>
I'm running Redhat Linux 6.

 

[AndyBo]

Not so sure about the firewall side of things, but if you want to test exactly what is and isn't vulnerable on the server, download SATAN. (Info from <A HREF="

http://www.cerias.purdue.edu/coast/satan.html"

TARGET="_new">

http://www.cerias.purdue.edu/coast/satan.html</A>

)<br>
<br>
Does a nice vulnerability test against the IP address you specify (including the machine it's installed on) and presents it all in a nice, UF format that you can view in your browser.<br>
<br>
HTH.

 

[pmkincaid]

What firewall are you using? If its ipchains, you can add a entry like so:<br>
<br>
ipchains -A input -j ACCEPT -p tcp -d xxx.xxx.xxx.xxx 21<br>
<br>
Where xxx.xxx.xxx.xxx is your IP address for the interface you are wanting to connect to.<br>
<br>
There are a lot more options you can use also if you want to get really paranoid.<br>
<br>
IPChains is the only firewall software I know, so if its ipfwadm, hopefully someone else can help...

 

[Zelandakh]

It is ipchains, so that is perfect, thanks.<br>
<br>
Andy - I had never heard of that product but I will be trying it out today. Many thanks.

 

[AndyBo]

Zel, you might also want to take a look at SAINT. This is an updated checker based upon the original SATAN, and then improved some. Details at <A HREF="

http://www.wwdsi.com/saint/"

TARGET="_new">

http://www.wwdsi.com/saint/</A>