Highest Voted 'firewall' Questions - Server Fault Stack Exchange

17

votes

3 answers

Exposing multiple servers behind NAT using a single public IP address

This is a Canonical Question about NAT and DNS I'm currently trying to set up a network with a DMZ containing a web server and an e-mail server separated from the Internet by a network address translating (NAT) firewall. I have installed the NAT…

asked Jul 08 '13 at 13:57

Atrotygma

271
1
2
5

17

votes

3 answers

Open Windows Firewall to all connections from specific IP Address

Is it possible to "whitelist" an IP Address in the Windows Firewall and allow all connections from that specific address?

windows-server-2008-r2 firewall ipv4 whitelist rules

asked Apr 05 '13 at 03:41

Aidan Knight

650
3
11
19

17

votes

5 answers

Disable Windows Server Network Locations

I'm not sure what exactly this feature is called. But in Windows Server 2008, it has the Vista Public/Private/Domain locations. This makes sense for laptops, and none at all for servers. My problem is that sometimes some network adapters decide…

windows windows-server-2008 networking firewall group-policy

asked May 19 '09 at 18:00

MichaelGG

1,739
8
25
30

16

votes

2 answers

In the output of `last`, what does suffix ".d" after an IP address mean?

In order to find out who was logged in recently on my server I am using the command: There were logins from very strange IP addresses e.g.: username@pc:/home/user$ last username pts/16 59.224.XX.178.d Sun Aug 2 12:26 - 12:27 (00:00) (where…

linux firewall ip login ip-address

asked Aug 17 '15 at 14:22

Jimmy88

341
1
2
10

16

votes

5 answers

iptables management tools for large scale environment

The environment I'm operating in is a large-scale web hosting operation (several hundred servers under management, almost-all-public addressing, etc -- so anything that talks about managing ADSL links is unlikely to work well), and we're looking for…

linux firewall iptables

asked Aug 07 '09 at 00:12

womble

96,255
29
175
230

16

votes

5 answers

Making iptables easier to maintain

My network is completely locked down except for a few sites which are whitelisted. This is all done through iptables, which looks something like this: # Allow traffic to google.com iptables -A zone_lan_forward -p tcp -d 1.2.3.0/24 -j ACCEPT iptables…

domain-name-system iptables firewall ip-address hostname

asked May 17 '13 at 15:35

Big McLargeHuge

393
3
4
14

16

votes

4 answers

Hardware firewall vs VMware firewall appliance

We have a debate in our office going on whether it's necessary to get a hardware firewall or set up a virtual one on our VMWare cluster. Our environment consists of 3 server nodes (16 cores w/ 64 GB RAM each) over 2x 1 GB switches w/ an iSCSI shared…

networking firewall vmware-esxi cisco-asa

asked Jun 22 '12 at 19:47

Luke

1,932
6
22
27

16

votes

4 answers

A secure, standard iptables rule-set for a basic HTTP(s) webserver

I have been trying to put together a basic server iptables script that will work for most sites just running a basic webserver using HTTP(S) and SSH (ports 80, 443, & 22). After all, most VPS only need these starting ports rules and can add mail or…

linux security firewall iptables best-practices

asked Sep 25 '10 at 17:35

Xeoncross

4,449
12
43
56

15

votes

7 answers

What is an edge server / router / device?

What is an edge server? We see some references to them, but we never see a definition.

security firewall hardware gateway

asked Sep 21 '09 at 20:56

Some Student

15

votes

2 answers

How big of a problem is it to punch a hole in the DMZ to one web server?

We currently have our web server in a DMZ. The web server cannot see anything within the internal network, but the internal network can see the web server. How safe would it be to punch a hole in the firewall between the DMZ and the internal network…

security firewall dmz

asked May 25 '11 at 16:35

Mike Wills

834
6
19

14

votes

3 answers

Stop China from connecting to my Google Compute Engine server

My company has a Google Compute Engine server hosted in North America. We get so many Chinese IP addresses sending requests to port 11 that it is costing us money for the ingress. Our firewall blocks all connections to China already as they have no…

firewall linux-networking hacking google-compute-engine china

asked May 28 '15 at 16:38

josh123a123

331
3
9

14

votes

1 answer

linux: traceroute send operation not permitted for remote server

When I try to traceroute to a remote ip, I get send: Operation not permitted When I stop iptables, traceroute works fine. So, I assume I need some ip rule for send. What would that rule be? I did find a solution here…

linux iptables firewall networking

asked Oct 18 '12 at 14:10

giorgio79

1,837
9
26
36

14

votes

2 answers

What is the right iptables rule to allow apt-get to download programs?

When I type something like sudo apt-get install firefox, everything work until it asks me: After this operation, 77 MB of additional disk space will be used. Do you want to continue [Y/n]? Y Then error messages are displayed: Failed to fetch:…

security iptables firewall

asked Sep 29 '12 at 19:18

anthony01

221
1
2
8

14

votes

2 answers

Is my TCP connections sabotaged by my country's government?

I am suspicious that my country's government is destroying the received ACK packet on TCP connections, somehow. When I try to establish a TCP connection to an outside host on ports other than 80 the TCP handshake will not be successful. I captured…

networking firewall tcp rst

asked Jul 25 '12 at 09:47

Mohammad

149
3

14

votes

3 answers

What should I consider to secure SVN on Windows?

Currently I am using VisualSVN Server and it's only accessible on my home network. Eventually there will be others accessing it, but for now it's just me and I would like to be able to go down to the coffee shop (or wherever) and be able to work…

windows security firewall svn visualsvn-server

asked Nov 20 '11 at 01:03

Brandon Moore

456
2
6
17

Questions tagged [firewall]