[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Firewall for Raq5
- Subject: RE: [cobalt-security] Firewall for Raq5
- From: "Tik & Klik Internetdiensten" <info@xxxxxxxxxx>
- Date: Tue, 21 Oct 2003 18:50:47 +0200
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
####################
iptables -t filter -P INPUT DROP
iptables -t filter -P OUTPUT ACCEPT
####################
iptables -t filter -A INPUT -i lo -j ACCEPT
####################
iptables -t filter -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
####################
iptables -t filter -A INPUT -p tcp -m tcp --dport 3306 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 444 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 110 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 143 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 81 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 21 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 20 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 25 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 5100 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp --dport 7030 -j ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp -d xxipoftheserver --dport 443 -j
ACCEPT
iptables -t filter -A INPUT -p tcp -m tcp -d xxsecondipontheserver --dport
443 -j ACCEPT
put it in a file
excecute it
----------
>Hello
>Can anyone suggest a good firewall for the Raq5 which can be
>setup remotely? I was going to use pmfirewall but it seems that
>ipcahins are incompatible with the latest kernel.