Re: [CentOS] firewalld management on a headless server

On 03/27/2017 09:23 PM, Mike wrote: Webmin used to be considered insecure, and people would scream and yell if you suggested using it. Has that changed? mark Ahh, I did not know of this. Well, I'm back to suggesting OP take a little time and get comfortable with firewall-cmd in the

Re: [CentOS] firewalld management on a headless server

Webmin used to be considered insecure, and people would scream and yell if you suggested using it. Has that changed? mark Ahh, I did not know of this. Well, I'm back to suggesting OP take a little time and get comfortable with firewall-cmd in the terminal. If we want our solid redhat

Re: [CentOS] firewalld management on a headless server

On 27/03/17 22:43, Valeri Galtsev wrote: On Mon, March 27, 2017 3:58 pm, Mike wrote: I don't think it's going to give you a web-based firewall configuration tool. Firewall/router system I use is pfSense: https://pfsense.org/ It has nice web interface for configuration of everything, based

Re: [CentOS] firewalld management on a headless server

On 03/27/2017 02:31 PM, m.r...@5-cent.us wrote: Has that changed? That answer is probably subjective. I'll probably never trust it, but the number of recent known critical exploits isn't as high as it used to be: https://www.cvedetails.com/vulnerability-list/vendor_id-358/Webmin.html

Re: [CentOS] firewalld management on a headless server

On Mon, March 27, 2017 3:58 pm, Mike wrote: > I don't think it's going to give you a web-based firewall configuration > tool. Firewall/router system I use is pfSense: https://pfsense.org/ It has nice web interface for configuration of everything, based on FreeBSD (very slim, lightweight, small

Re: [CentOS] firewalld management on a headless server

Mike wrote: > Nice catch, Mr. Schumacher ---> The following modules are included as > standard with release 1.831 of Webmin. FirewallD firewalld.wbm.gz > Configure a Linux firewall using FirewallD, by editing allowed > services and ports. > > This is likely the right tool for the job. > Webmin

Re: [CentOS] firewalld management on a headless server

yum (CentOS/RedHat/Fedora) By adding the Webmin repository and Jamie Cameron's key, it is possible to install & maintain the latest Webmin/Usermin versions. The following will install the latest Webmin version by adding the webmin-repo and corresponding GPG key. Yum will resolve all the

Re: [CentOS-virt] NIC Stability Problems Under Xen 4.4 / CentOS 6 / Linux 3.18

On 03/27/2017 04:03 PM, Kevin Stange wrote: > On 03/25/2017 02:35 PM, Sarah Newman wrote: >> On 03/16/2017 04:22 PM, Kevin Stange wrote: >> I still can't rest assured the NIC issue is fixed, but no 4.4 or 4.9 server has yet had a NIC issue, with some being up almost a full month. It

Re: [CentOS] firewalld management on a headless server

Nice catch, Mr. Schumacher ---> The following modules are included as standard with release 1.831 of Webmin. FirewallD firewalld.wbm.gz Configure a Linux firewall using FirewallD, by editing allowed services and ports. This is likely the right tool for the job. On Mon, Mar 27, 2017 at 5:00 PM,

Re: [CentOS-virt] NIC Stability Problems Under Xen 4.4 / CentOS 6 / Linux 3.18

On 03/25/2017 02:35 PM, Sarah Newman wrote: > On 03/16/2017 04:22 PM, Kevin Stange wrote: > >>> I still can't rest assured the NIC issue is fixed, but no 4.4 or 4.9 >>> server has yet had a NIC issue, with some being up almost a full month. >>> It looks promising! (I'm knocking on all the wood

Re: [CentOS] firewalld management on a headless server

Hi, > I recently converted my employer's firewall from pure iptabes to > firewalld and looked for something similar, more along the lines of > webmin, etc. funny, my webmin installation on a banana-pi has webmin 1.831, which has support for firewalld. I am not sure, but I believe I got it

Re: [CentOS] firewalld management on a headless server

I don't think it's going to give you a web-based firewall configuration tool. It does allow you to control/configure networking hardware and devices via NetworkManager, but I don't believe it goes further than that for networking. Ironically, it does provide a an ssh-like session terminal where

Re: [CentOS] firewalld management on a headless server

On 03/27/2017 03:24 PM, Mike wrote: I recently converted my employer's firewall from pure iptabes to firewalld and looked for something similar, more along the lines of webmin, etc. I didn't find anything close to a match. In the end, it all came down to getting comfortable with "firewall-cmd"

Re: [CentOS] Does fail2ban protect anything other than SSH logins?

On Mon, Mar 27, 2017 at 02:44:16PM -0500, Robert Moskowitz wrote: > I am looking at fail2ban, and all I see is it protecting remote logins to > SSH. > > Does it protect any other access to systems? Well perhaps other than VNC > perhaps? > > thank you > Look at /etc/fail2ban/jail.conf. Mine

Re: [CentOS] firewalld management on a headless server

I recently converted my employer's firewall from pure iptabes to firewalld and looked for something similar, more along the lines of webmin, etc. I didn't find anything close to a match. In the end, it all came down to getting comfortable with "firewall-cmd" in the shell. Haven't used suricata,

Re: [CentOS] Does fail2ban protect anything other than SSH logins?

> On Mar 27, 2017, at 12:44, Robert Moskowitz wrote: > > I am looking at fail2ban, and all I see is it protecting remote logins to SSH. > > Does it protect any other access to systems? Well perhaps other than VNC > perhaps? > > thank you It can, but you have to either

[CentOS] Does fail2ban protect anything other than SSH logins?

I am looking at fail2ban, and all I see is it protecting remote logins to SSH. Does it protect any other access to systems? Well perhaps other than VNC perhaps? thank you ___ CentOS mailing list CentOS@centos.org

[CentOS] firewalld management on a headless server

Is there an Apache tool to manage firewalld on a headless server? I am looking forward to my next Centos project which is to replace my Juniper SSG5 firewall... And along that line, what overlap, if any between firewalld and Suricata? thank you

Re: [CentOS-es] Squid: bloqueo paginas por Rango IP

El Lunes 27/03/2017, Cesar Martinez escribió: > Adicional debes tomar en cuenta que squid no filtra sitios https por > ende debes usar iptables para bloquear sitios htps Es cierto, nosotros bloqueamos la salida HTTPS y configuramos el proxy en los navegadores. Para HTTP usamos squid en modo

Re: [CentOS-es] Squid: bloqueo paginas por Rango IP

Adicional debes tomar en cuenta que squid no filtra sitios https por ende debes usar iptables para bloquear sitios htps -- |Saludos Cordiales |César Martínez M. | Ingeniero de Sistemas |Consultor & Proyectos Software Libre| SERVICOM |Tel: (593-2)554-271 2221-386 | Ext 4501 |Celular:(593

Re: [CentOS] Systemd interface rename does not work

On Sun, Mar 26, 2017 at 9:16 AM, Matt . wrote: > > Hi, > > I'm moving to Systemd for my network management but I don't see my > link name changed when I try to using a .link name. > > The .network file works right, networkmanager is removed as well to > accomplish this. >

Re: [CentOS] Systemd interface rename does not work

Hi, i dont know what way you prefer to archieve network interface renaming, what I do is set specific udev rules. user@host# cat /etc/udev/rules.d/60-net.rules SUBSYSTEM=="net", ACTION=="add", ATTR{address}=="00:00:50:cc:19:0a", ATTR{type}=="1", NAME="eth0" SUBSYSTEM=="net", ACTION=="add",

Re: [CentOS-docs] Adding SIG info to mirror list

On 2017-03-27 14:16, Anssi Johansson wrote: > 27.3.2017, 14.31, Zdenek Sedlak kirjoitti: >> Hello, >> >> I was looking for AltArch Rsync mirror somewhere in the Nordic and it is >> somehow hard to find. >> >> Mirror list at https://www.centos.org/download/mirrors/ shows the >> available

Re: [CentOS-docs] Adding SIG info to mirror list

27.3.2017, 14.31, Zdenek Sedlak kirjoitti: Hello, I was looking for AltArch Rsync mirror somewhere in the Nordic and it is somehow hard to find. Mirror list at https://www.centos.org/download/mirrors/ shows the available HTTP/FTP/Rsync mirrors, but there is no information if the mirror

[CentOS-docs] Adding SIG info to mirror list

Hello, I was looking for AltArch Rsync mirror somewhere in the Nordic and it is somehow hard to find. Mirror list at https://www.centos.org/download/mirrors/ shows the available HTTP/FTP/Rsync mirrors, but there is no information if the mirror provides other content than the CentOS repository