[jira] [Commented] (TRAFODION-88) LP Blueprint: infra-iptables - infra - Enhance iptables setup

Alice Chen (JIRA) Thu, 23 Jul 2015 11:23:07 -0700

    [ 
https://issues.apache.org/jira/browse/TRAFODION-88?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14639314#comment-14639314
 ]


Alice Chen commented on TRAFODION-88:
-------------------------------------

Useful links :
http://serverfault.com/questions/245711/iptables-tips-tricks
https://wiki.archlinux.org/index.php/simple_stateful_firewall

Gerrit topic: https://review.trafodion.org/#q,topic:bp/infra-iptables,n,z

Addressed by: https://review.trafodion.org/288
    Fix IPv6 rule for ICMP

Addressed by: https://review.trafodion.org/355
    Clean up iptables logging

Addressed by: https://review.trafodion.org/356
    Fix problem with Duplicate declaration of Service[rsyslog]

Addressed by: https://review.trafodion.org/361
    Configure options for kernel module xt_recent

Addressed by: https://review.trafodion.org/581
    Enhance iptables setup

> LP Blueprint: infra-iptables - infra - Enhance iptables setup
> -------------------------------------------------------------
>
>                 Key: TRAFODION-88
>                 URL: https://issues.apache.org/jira/browse/TRAFODION-88
>             Project: Apache Trafodion
>          Issue Type: New Feature
>          Components: Build Infrastructure
>            Reporter: Alice Chen
>            Assignee: Alice Chen
>            Priority: Critical
>
> Enhance iptables setup so it is stateless by using the recent module to 
> autoblock users violating iptable rules.  This way a blacklist is not 
> required and maintenance will be easier.  Currently, iptables is also 
> dropping some packets it shouldn't and not blocking some traffic as it should.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (TRAFODION-88) LP Blueprint: infra-iptables - infra - Enhance iptables setup

Reply via email to