http://forums.fedoraforum.org – I'm running a Fedora 17 desktop system that I've decided to put an OEL 6 virtual machine on. I built the VM first with virtual network NAT the default but discovered that only the host could communicate with it. After reading the available documentation (which I probably should have done first) I found that I needed to use a bridged network on the host so the VM would be available on my LAN. (HowTos)
Email this pagehttp://serverfault.com – My question is related to multicasts and iptables. I want to allow ICMP and IGMP multicasts from the local VLAN 192.168.1.0/24 as well as from 0.0.0.0 on my CentOS machine, so I added the following rules to my inbound chain: # ACCEPT - Multicast 224.0.0.1 from current VLAN as well as 0.0.0.0 # -- ICMP iptables -A IP-INPUT -s 192.168.1.0/24 -d 224.0.0.1 -m pkttype --pkt-type multicast --protocol (HowTos)
Email this pagehttp://serverfault.com – I've got a small network, two interfaces, eth1(local, internal range 192.168.150.0/24) and eth0 external, static ip. I wish to set up nat forwarding for the internal network but allow them to only connect to an external server 209.60.x.x and reject connections to all other external ips. How do i only allow forwarding/nat to ip 209.60.x.x ? (HowTos)
Email this pagehttps://www.centos.org – Holy smokes this is why you have Linux Administrator in your sig and I don't. I will digest this a bit and regroup.Thank you!caliman [by caliman] (HowTos)
Email this pagehttp://news.softpedia.com – ConfigServer Firewall, an SPI iptables firewall that is straightforward, easy and flexible to configure and secure, with extra checks to ensure smooth operation, is now at version 5.79. Highlights of ConfigServer Firewall 5.79: • Modified csf error routine has been added to store failing error, in csf.error, and not it displays an instructional message; • Check for libkeyutils-1.2.so.2 (General)
Email this pagehttp://news.softpedia.com – ConfigServer Firewall, an SPI iptables firewall that is straight-forward, easy and flexible to configure and secure with extra checks to ensure smooth operation, is now at version 5.78. (General)
Email this pagehttp://forums.fedoraforum.org – Just finnished... reinstalling F17. I tried with F18 xfce as well on a different set of partitions, nice new installer. Firewalld looks very nice but you can never shut down port 22, even if you shut down all services. Shut it down and used iptables directly. (HowTos)
Email this pagehttp://stackoverflow.com – I'm looking for suggestions around the notion of securing a Linux host in 2013... Historically I've used aspects of the following but it's been a while since I've thought about these matters and it may be time to shore up those defenses again! Securing a Linux host: Disable all insecure protocols (telnet, pop, etc) and restrict shell access to ssh2. Disable root remote log into the shell. Limi (HowTos)
Email this pagehttp://serverfault.com – I've followed instructions on running two web apps in apache and my current confs are like this: apache2.conf: http://paste.ubuntu.com/1547286/ httpd.conf: http://paste.ubuntu.com/1547288/ ports.conf: http://paste.ubuntu.com/1547290/ I have a php web app on port 80 and a rails app on port 88. (HowTos)
Email this pagehttp://serverfault.com – When trying to setup a redirect and save the iptables file via iptables-restore, i get the following error: iptables-restore v1.4.8: Line 31 seems to have a -t table option. Error occurred at line: 31 Here's the full file, with the line im trying to use to redirect at #31 *filter # Allows all loopback (lo0) traffic and drop all traffic to 127/8 that doesn't use lo0 -A INPUT -i lo -j ACCEPT - (HowTos)
Email this page
