8
Cannot connect after iptable -Fview story

http://serverfault.com – I want to add whitelist in my system using iptables. So I searched the web and find this: iptables -I INPUT -s 10.0.0.0/8 -j ACCEPT iptables -I INPUT -s 127.0.0.1/8 -j ACCEPT iptables -I INPUT -s 192.168.0.0/16 -j ACCEPT iptables -P INPUT DROP and it really works. So I fire iptable -F to delete all rules, then I cannot connect to this server anymore. (HowTos)

8
Could not open port for activeMQ broker on CentOSview story

http://serverfault.com – here is problem: We have virtual machine on VMware ESXi with CentOS 6.3 system (devserver). To access ports on virtual machine we do port forwarding. We deploy application in tomcat on devserver (Tomcat7,JDK7) iptables dispabled. After deployment, ActiveMQ start to listen on 60001 port. (HowTos)

8
Host to VM networking and VM to Host networkingview story

http://forums.fedoraforum.org – I'm running a Fedora 17 desktop system that I've decided to put an OEL 6 virtual machine on. I built the VM first with virtual network NAT the default but discovered that only the host could communicate with it. After reading the available documentation (which I probably should have done first) I found that I needed to use a bridged network on the host so the VM would be available on my LAN. (HowTos)

8
Problems with multicasts in "iptables"view story

http://serverfault.com – My question is related to multicasts and iptables. I want to allow ICMP and IGMP multicasts from the local VLAN 192.168.1.0/24 as well as from 0.0.0.0 on my CentOS machine, so I added the following rules to my inbound chain: # ACCEPT - Multicast 224.0.0.1 from current VLAN as well as 0.0.0.0 # -- ICMP iptables -A IP-INPUT -s 192.168.1.0/24 -d 224.0.0.1 -m pkttype --pkt-type multicast --protocol (HowTos)

8
Iptables NAT forwarding - how to block all but one IPview story

http://serverfault.com – I've got a small network, two interfaces, eth1(local, internal range 192.168.150.0/24) and eth0 external, static ip. I wish to set up nat forwarding for the internal network but allow them to only connect to an external server 209.60.x.x and reject connections to all other external ips. How do i only allow forwarding/nat to ip 209.60.x.x ? (HowTos)

7
Does IPtables throttle IPs by default? How to remove for cloud IPs?view story

https://www.centos.org – Holy smokes this is why you have Linux Administrator in your sig and I don't. I will digest this a bit and regroup.Thank you!caliman [by caliman] (HowTos)

8
ConfigServer Firewall 5.79 Is Available for Downloadview story

http://news.softpedia.com – ConfigServer Firewall, an SPI iptables firewall that is straightforward, easy and flexible to configure and secure, with extra checks to ensure smooth operation, is now at version 5.79. Highlights of ConfigServer Firewall 5.79: • Modified csf error routine has been added to store failing error, in csf.error, and not it displays an instructional message; • Check for libkeyutils-1.2.so.2 (General)

8
ConfigServer Firewall 5.78 Is Available for Downloadview story

http://news.softpedia.com – ConfigServer Firewall, an SPI iptables firewall that is straight-forward, easy and flexible to configure and secure with extra checks to ensure smooth operation, is now at version 5.78. (General)

8
F18 problemsview story

http://forums.fedoraforum.org – Just finnished... reinstalling F17. I tried with F18 xfce as well on a different set of partitions, nice new installer. Firewalld looks very nice but you can never shut down port 22, even if you shut down all services. Shut it down and used iptables directly. (HowTos)

7
How to secure a Linux host? [closed]view story

http://stackoverflow.com – I'm looking for suggestions around the notion of securing a Linux host in 2013... Historically I've used aspects of the following but it's been a while since I've thought about these matters and it may be time to shore up those defenses again! Securing a Linux host: Disable all insecure protocols (telnet, pop, etc) and restrict shell access to ssh2. Disable root remote log into the shell. Limi (HowTos)