Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > General

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 31st March 2011, 19:14
Norman Norman is offline
HowtoForge Supporter
 
Join Date: May 2006
Posts: 242
Thanks: 0
Thanked 18 Times in 14 Posts
Default Firewall with more rules than open / closed ports

Is there a recommended way to add more advanced firewall rules to a standard ISPconfig3 system?

For example in some cases I'd like to close port X with exceptions for some allowed IPs.

Is there a recommended way to add such custom rules without ISPconfig 3 overwriting them?
__________________
http://www.xh.se
Reply With Quote
Sponsored Links
  #2  
Old 31st March 2011, 19:18
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 37,022
Thanks: 840
Thanked 5,655 Times in 4,464 Posts
Default

Please see here:

http://www.howtoforge.com/forums/showthread.php?t=6209

I guess it should work for ispconfig 3 as well, as the firewall script is the same then the one used in ispconfig 2.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 12th October 2011, 15:51
Hawker1 Hawker1 is offline
Junior Member
 
Join Date: Feb 2007
Posts: 3
Thanks: 2
Thanked 0 Times in 0 Posts
Default

It's been a long time since I used ispconfig but I'm impressed with the new version 3. And after a search for this very topic I came across this thread.

Might I suggest that this ability be added to the control panel itself?

The reason I'm asking is because I want to lock out any access to SSH except for my IP address. However, my IP address is dynamic so without the ability to change the IP from within the control panel I would never have the ability to access the server via SSH when my IP changes.

It would also allow for quick banning of problematic IP's from the server.

Without looking at the code, I would imagine this would just be two added fields, IP address and a boolean allow/deny field.
Reply With Quote
  #4  
Old 12th October 2011, 15:53
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 37,022
Thanks: 840
Thanked 5,655 Times in 4,464 Posts
 
Default

A new firwall system has already been written and will be published in 3.0.5. Please see roadmap:

http://bugtracker.ispconfig.org/inde...&due=45&status[]=
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
The Following User Says Thank You to till For This Useful Post:
Hawker1 (12th October 2011)
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Problem 100% CPU ispconfig_httpd -DSSL Captain Installation/Configuration 7 8th March 2010 22:50
High on Lenny - Lvm Mount Problem Serverman Technical 1 23rd June 2009 17:26
Question about Virtual Hosting With Proftpd And MySQL (Incl. Quota) On Debian Etch ikkem HOWTO-Related Questions 30 26th February 2008 20:38
Open Ports Salam Installation/Configuration 1 7th February 2008 12:31
open ports rayit General 6 18th January 2006 15:23


All times are GMT +2. The time now is 01:50.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.