I understand that somebody would want to block incoming traffic as a general rule except for public resources. And I also understand that you could want to block all outgoing traffic except for certain external services.
But is there any serious security risk if I allow incoming traffic that represents responses to previous outgoing traffic, e.g. HTTP requests?
Hi All,
I have just started learning Lunix; I hope you can help me to block unwanted DNS traffic.
I have big spikes of traffic few times a day. The duration is from few minutes to two hours.
Incoming traffic is 1 mbps, outgoing is 3mbps
Using my friend's script I was able to get some logs.
I've got a cheap VPS running Ubuntu 12.04 that I sometimes proxy web traffic through via SSH when I don't trust the network I'm on. I'd like to have a closer look at some of that traffic on occasion.
My server is witnessing a sudden increase in traffic. Consistently there is a 200mb outgoing traffic every hour. This is not my web traffic. I am running centos OS and completely new to server administration. Can some one help me to figure out what is causing the traffic. I tried all possible netstat lsof etc. But couldnt really figure out what is causing this.
I rent a dedicated server from a hosting provider. I ran wireshark on my server so that I could see incoming HTTP traffic that was destined to my server.
Once I ran wireshark and filtered for HTTP I noticed a load of traffic, but most of it was not for stuff that was hosted on my server and had a destination IP address that was not mine, there were various source IP addresses.
I'm using a virtual Ubuntu Server (on Amazon EC2) and I want to connect to a PPTP VPN server to route outgoing traffic through this connection. To do this, I specify the following two options:
defaultroute
replacedefaultroute
This works - but the moment the tunnel to route the traffic is established, my SSH connection to the server is broken and I can't reconnect.
I have an Ubuntu machine acting as a router/Stateful Firewall/NAT for my internet connection. It has a couple of ethernet ports and a wireless network for my home network (eth5, eth7, eth10 and wlan1). It is connected with a DSL modem in bridged mode giving it a connection to the internet called ppp0.
Hello,
I want to use dansguardian as a content filter with squid. I also want to block all outgoing internet traffic except on port 8080, so that users cannot circumvent the content filter by turning off the proxy settings in their browser. However, when I do this using ufw it basically blocks all outgoing internet traffic even if I allow specific ports.
I've got an Ubuntu 12.04 server running on Amazon's EC2 that runs a web crawling process. We're running into a problem where some of the webservers hosting the sites we need to crawl are blocking all EC2 IP addresses.
My brilliant idea was to tunnel outgoing HTTP requests through a VPN.
Email this page
