I have several Linux webservers with The Planet, and what I have learned from then until now has been extensive. What I am now wanting to do is configure IPTABLES to allow my services and ports to continue to be monitored and not blocked. Also from what I have heard if the server is ever restarted that IPTABLES will lose the changes made, so I would have to again add all of the ip's and ports.
What commands do i run?
Is there a command line procedure or a config file that i can edit that will never lose the rules that are created to allow service monitoring through?
any help would be appreciated.
Please keep in mind i will be doing this on a Linux Red Hat 4ES box with Cpanel
Full Version: IPTABLES config to allow service monitoring
Hi Aaron Moon,
The best solution is use portsentry.
opensourcedevelopment.net
Software Development, Support, Maintenance, Web Development
The best solution is use portsentry.
opensourcedevelopment.net
Software Development, Support, Maintenance, Web Development
QUOTE (opensourcedevelopment @ Jun 13 2007, 01:59 AM) 
Hi Aaron Moon,
The best solution is use portsentry.
<a href="http://www.opensourcedevelopment.net" target="_blank">opensourcedevelopment.net
Software Development, Support, Maintenance, Web Development</a>
The best solution is use portsentry.
<a href="http://www.opensourcedevelopment.net" target="_blank">opensourcedevelopment.net
Software Development, Support, Maintenance, Web Development</a>
Thats great but your link doesn't take me wnywhere that would answer any of my questions... can you please elaborate?
QUOTE (Aaron Moon @ Jun 13 2007, 01:34 AM)
I have several Linux webservers with The Planet, and what I have learned from then until now has been extensive. What I am now wanting to do is configure IPTABLES to allow my services and ports to continue to be monitored and not blocked. Also from what I have heard if the server is ever restarted that IPTABLES will lose the changes made, so I would have to again add all of the ip's and ports.
What commands do i run?
Is there a command line procedure or a config file that i can edit that will never lose the rules that are created to allow service monitoring through?
any help would be appreciated.
Please keep in mind i will be doing this on a Linux Red Hat 4ES box with Cpanel
What commands do i run?
Is there a command line procedure or a config file that i can edit that will never lose the rules that are created to allow service monitoring through?
any help would be appreciated.
Please keep in mind i will be doing this on a Linux Red Hat 4ES box with Cpanel
After you have altered your running rules you can use the following command to save the rules:
CODE
/sbin/service iptables save
This, of course, can also be performed using the iptables-save command and direct to the /etc/sysconfig/iptables file.
Depending on your needs, you can use portsentry to stop unknown bruteforce scans, apf for static rules, csf if you are using the cPanel control panel, QuickTables to have an interactive generation of iptables rules, or any other scripts/packages that best suite you.
Please insure that you review https://orbit.theplanet.com/nav_services/n5...tablerules.html as well.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.