firewall and ssl

Post here if you are a new Porteus member and you're looking for some help.
slafochmed
Ronin
Ronin
Posts: 2
Joined: 10 Nov 2014, 15:48
Distribution: Porteus
Location: world

firewall and ssl

Post#1 by slafochmed » 10 Nov 2014, 15:59

Hi there. I am new to Porteus and I want to build a secure host that connects to only one or two IPs.
I installed porteus on a SD card and it is booting fine and I did some changes to language and changed passwords in the Porteus Settings Centre.

Now I am trying to configure the firewall and I noticed that the frontend does not work.
So I am trying to configure iptables being root.
Can you guide me on how to do this?
Is this correct?
- get into terminal, become root
- configure iptables with the iptables command
- verify the settings in the current session
- if OK, save the iptables config to a file like: iptables-save /etc/myiptables.conf
- make the config load by adding the above command to: /etc/rc.d/rc.local

I think it is not because my iptable setting work only partly and they get lost during reboot.

I would also like to know how I can check which version of TLS is used because I want a secure connection to one server on the internet.

Please help. :)

slafochmed
Ronin
Ronin
Posts: 2
Joined: 10 Nov 2014, 15:48
Distribution: Porteus
Location: world

Re: firewall and ssl

Post#2 by slafochmed » 22 Nov 2014, 12:57

I found that there is no general logic to configure Firewalls. An access control list of a router can work completely different than a firewall program on an end user device...

I reduce my questions to this:
Are the firewall settings in Porteus suppose to work?
Can I track changes in the iptable settings?
Is there a version and Window Manager dependency? I downloaded an ISO image with Desktop XFCE about a month ago.

Thanks. :unknown:

User avatar
brokenman
Site Admin
Site Admin
Posts: 6105
Joined: 27 Dec 2010, 03:50
Distribution: Porteus v4 all desktops
Location: Brazil

Re: firewall and ssl

Post#3 by brokenman » 22 Nov 2014, 14:20

I found that there is no general logic to configure Firewalls.
Correct but there is a definite logic to iptables. You should find a good tutorial about them somewhere. There are thousands of them around.

Are the firewall settings in Porteus suppose to work?
Yes. A bug was found in the last release that prevents the changes persisting. This will be fixed in the next release (December).

Can I track changes in the iptable settings
Yes. iptables -nL
Again find a tutorial on iptables and learn how to use them.

Is there a version and Window Manager dependency?
No. have a read of /etc/rc.d/rc.FireWall for examples of iptables commands.

There are various ways to implement your changes on the next boot. You can edit rc.FireWall directly or you can make your own script that starts at run level 4. I will post some examples later (at work now).
How do i become super user?
Wear your underpants on the outside and put on a cape.

Post Reply