Navigation

concept21 · #1 16th October 2012, 05:34

Bastille Firewall is a legacy software which does not run on Ubuntu 10.04.

Please remove it from future ISPConfig3.

Thanks.

till · #2 16th October 2012, 08:20

Bastille Firewall runs fine on Ubuntu 10.04.

concept21 · #3 19th October 2012, 18:24

Man,
Bastille has not been updated for several years. May I suggest you to replace it with CSF??

till · #4 19th October 2012, 18:57

Bastille is a iptables firewall script which does everything that we need it for, so it does not matter how often it is updated as it works fine. Beside bastille, ispconfig supports ufw as firewall since 3.0.5.

tek · #5 27th October 2012, 18:56

I had to remove bastille also from my setup because I needed some NAT - IP masquerading setup plus a fair number of ports to be forwarded. I know there are much easier firewall scripts out there such as ufw but I am actually doing a fair amount of port forwarding and using iscsi and other bits of blackmagic and having had no choice a long time ago I had gone through the pain and suffering to get arno-iptables-firewall setup and configured.

Kind of sucks cause I am always tempted to click on firewall from the backend and I seem to recall at one point I actually did and this broke a nice long list of things as it tried to setup both firewalls to run.

while I do wish arno-iptables-firewall could be configured through there I accept the fact that might be asking for a bit much.

Since you mention ufw being supported now, I am wondering if there is a way perhaps to turn off ispconfig3 from handing it at all? Im gonna hate myself if I end up with yet another way I can shoot myself in the head.
Thanks..

concept21 · #6 27th October 2012, 19:42

If you don't install Bastille, ISpconfig firewall option just does not have any effect on the system's firewall.

Then, you can install your own preferred firewall software. The startup script of Bastille can be manually removed or disabled.