Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > HOWTO-Related Questions

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 28th March 2006, 12:38
merlos merlos is offline
Junior Member
 
Join Date: Mar 2006
Posts: 2
Thanks: 0
Thanked 0 Times in 0 Posts
Default How To Install A Custom Iptables Firewall

Hi all
I tried to follow the howto but I noticed that the file /etc/firewall/firewall.conf.iptables is missing end this file is needed by firewall.iptables daemon.
Can anyone tell me where I can download this file or send here an example config file???

Tks in advance
Merlos
Reply With Quote
Sponsored Links
  #2  
Old 28th March 2006, 14:52
merlos merlos is offline
Junior Member
 
Join Date: Mar 2006
Posts: 2
Thanks: 0
Thanked 0 Times in 0 Posts
Default

OK I found out a config file to start

http://www.penguinsecurity.net/pense...e=print&sid=39

Hope is useful for someone else...
Bye
Reply With Quote
  #3  
Old 1st April 2006, 06:41
sbovisjb1 sbovisjb1 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 176
Thanks: 0
Thanked 1 Time in 1 Post
Default Im sorry about that...

Yes you need that file, but most people do... if you don't this is what to do.
Put firewall.conf.iptables, firewall.dns, firewall.banned, firewall.iana-reserved, and firewall.local.iptables (remove the "-generic" from the file names) in a directory called /etc/firewall. <-- that is if my other way didnt work, its just a case of kernel directories and dependincies.
Reply With Quote
  #4  
Old 2nd April 2006, 19:21
sbovisjb1 sbovisjb1 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 176
Thanks: 0
Thanked 1 Time in 1 Post
Default Here u go

Those directories are where custom dependincies, user options and data output can be stored. If a directory is missing just type in
gedit /etc/firewall/firewall.conf.iptables or anything as such and you should be good.
Reply With Quote
  #5  
Old 9th April 2006, 18:31
mebusybody mebusybody is offline
Junior Member
 
Join Date: Apr 2006
Posts: 22
Thanks: 0
Thanked 0 Times in 0 Posts
Angry After Installing ISPConfig iptables wont start

Hi
Please help serious security problem.

After installing ISPConfig iptables won't startup.
No error what so ever.

/etc/init.d/iptables start
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: filter mangle nat [ OK ]
Unloading iptables modules: [ OK ]
Applying iptables firewall rules: [ OK ]


/var/log/messages
Apr 10 00:25:24 host kernel: Removing netfilter NETLINK layer.
Apr 10 00:25:24 host kernel: ip_tables: (C) 2000-2002 Netfilter core team
Apr 10 00:25:24 host kernel: Netfilter messages via NETLINK v0.30.
Apr 10 00:25:24 host kernel: ip_conntrack version 2.4 (4094 buckets, 32752 max) - 232 bytes per conntrack

Startef firewall using IPConfig, the firewall monitor page is totally different from my iptables rule !

ps -ef | grep iptables

no iptables process !

Please help
Cheer
mebusybody
Attached Images
 
Reply With Quote
  #6  
Old 9th April 2006, 18:36
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 35,486
Thanks: 813
Thanked 5,256 Times in 4,121 Posts
Default

Quote:
Startef firewall using IPConfig, the firewall monitor page is totally different from my iptables rule !
Sure, dont mix 2 iptable firewalls on the same server! Either use the ISPConfig firewall or any other firewall but not both!

The ISPConfig firewall is the bastille firewall script taht you find in your /etc/init.d directory.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #7  
Old 9th April 2006, 19:08
mebusybody mebusybody is offline
Junior Member
 
Join Date: Apr 2006
Posts: 22
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by till
Sure, dont mix 2 iptable firewalls on the same server! Either use the ISPConfig firewall or any other firewall but not both!

The ISPConfig firewall is the bastille firewall script taht you find in your /etc/init.d directory.
Thanks for the info, sigh is 1am here. I will continue later in day
Reply With Quote
  #8  
Old 10th April 2006, 04:53
sbovisjb1 sbovisjb1 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 176
Thanks: 0
Thanked 1 Time in 1 Post
Default

Nice to see that you fixed that one up... my first firewall script was to allow ports and services the second one was to monitor them.... its true what he said. My suggestion is that if the first one didnt work, (or the second one) just use one. Ill get on fixing that problem
Reply With Quote
  #9  
Old 10th April 2006, 09:00
mebusybody mebusybody is offline
Junior Member
 
Join Date: Apr 2006
Posts: 22
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by till
Sure, dont mix 2 iptable firewalls on the same server! Either use the ISPConfig firewall or any other firewall but not both!

The ISPConfig firewall is the bastille firewall script taht you find in your /etc/init.d directory.
Hi Till
bastill-firewall is just a script, it will excute iptables or ipchain.
It seem it is calling /sbin/bastill-netfilter, in my case I have iptables installed.

Question is why ISPConfig use or what is the advantage of this script ?

Cheers
mebusybody
Reply With Quote
  #10  
Old 10th April 2006, 09:20
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,735 Times in 2,571 Posts
 
Default

/sbin/bastille-netfilter is using iptables.
You can check the state of your firewall with
Code:
iptables -L
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:

Last edited by falko; 10th April 2006 at 09:28.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
How to install APF (Advanced Policy Firewall) domino Tips/Tricks/Mods 5 8th March 2006 03:57
Server setup for Web Purposes with custom Firewall ramangill Installation/Configuration 22 8th February 2006 22:43
Firewall question for Virtual Users/domains using postfix/courier/MySQL toastmaster HOWTO-Related Questions 1 25th January 2006 07:04
Mandriva 10.2 Perfect Setup Install Problems... ctroyp Installation/Configuration 12 30th December 2005 16:04
custom firewall rules edge Installation/Configuration 2 13th December 2005 13:00


All times are GMT +2. The time now is 07:06.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.