OS: FC4
Shorewall version: 3.2.7
i setup a postfix email server and i am using the webmin upload/download
module to upload files and save files directly to a server or download
directly from the server. I also use this and another server for OpenVPN
connections. Both servers run the same version of shorewall.
Basically I want to do this: allow unrestricted VPN traffic to flow through
the servers (which works now, thanks to your articles), but not allow access
to any service to anyone unless they are on the vpn. (unable to check email,
download files, or do anything to my server) I will need to allow the email
server to receive emails at any time of course. I was thinking something
like this in the macro.files
PARAM 10.0.8.0 - TCP 22 #comment
for all the ports i need open...80, 443, 22, etc
I am using Webmin to configure shorewall, except when i have to manually do
something. I just dont want the server touched by anyone not on vpn (mainly
me and friends) except port 80 and 110 and 22 i guess.
And unfortunately i am a total newbie, but digging the opensource thing and
learning linux, reading, etc, but security seems important, so i wanted to
ask the list if anyone has a quick solution so i dont get hacked 5min after
bringing the servers online or if the above looks like it might work.
Thanks for any comments, feedback, etc, its all good.
MDP
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
