Porteus

Hi there. I am new to Porteus and I want to build a secure host that connects to only one or two IPs.
I installed porteus on a SD card and it is booting fine and I did some changes to language and changed passwords in the Porteus Settings Centre.

Now I am trying to configure the firewall and I noticed that the frontend does not work.
So I am trying to configure iptables being root.
Can you guide me on how to do this?
Is this correct?
- get into terminal, become root
- configure iptables with the iptables command
- verify the settings in the current session
- if OK, save the iptables config to a file like: iptables-save /etc/myiptables.conf
- make the config load by adding the above command to: /etc/rc.d/rc.local

I think it is not because my iptable setting work only partly and they get lost during reboot.

I would also like to know how I can check which version of TLS is used because I want a secure connection to one server on the internet.

Please help.

I found that there is no general logic to configure Firewalls. An access control list of a router can work completely different than a firewall program on an end user device...

I reduce my questions to this:
Are the firewall settings in Porteus suppose to work?
Can I track changes in the iptable settings?
Is there a version and Window Manager dependency? I downloaded an ISO image with Desktop XFCE about a month ago.

Thanks.

I found that there is no general logic to configure Firewalls.
Correct but there is a definite logic to iptables. You should find a good tutorial about them somewhere. There are thousands of them around.

Are the firewall settings in Porteus suppose to work?
Yes. A bug was found in the last release that prevents the changes persisting. This will be fixed in the next release (December).

Can I track changes in the iptable settings
Yes. iptables -nL
Again find a tutorial on iptables and learn how to use them.

Is there a version and Window Manager dependency?
No. have a read of /etc/rc.d/rc.FireWall for examples of iptables commands.

There are various ways to implement your changes on the next boot. You can edit rc.FireWall directly or you can make your own script that starts at run level 4. I will post some examples later (at work now).