Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [firewall]

A Firewall is an application or hardware device used to inspect and filter network traffic.

4221 questions
1
vote
1 answer

What is correct iptables chain to put -j NETFLOW

I have a router, with firewall (with drop policy), nats, services. I want to account all factual traffic (inputed before firewal, outputed by services, and passed firewall in forwarding), with its "actual" src/dst (i.e before SNAT, and after…
QwiglyDee
  • 111
  • 2
1
vote
1 answer

limiting ip range on openvpn server

We're trying to setup a openvpn server on centos 6. We have blocked all IP adresses except a couple in a whitelist via /etc/hosts.deny, also we did the same with csf.deny (except for the whitelist). This block seems to be working, can't reach the…
DDdW
  • 113
  • 4
1
vote
0 answers

Active FTP client blocked by Windows Firewall on Windows 7

Possible Duplicate: Active FTP client blocked by Windows Firewall on Windows 7 I have an application that runs as a service and contains an FTP client. It needs to connect to an FTP server that only supports Active FTP. When I attempt to get a…
Eli
1
vote
1 answer

how to block packetflood originating from certain network but different IPs

i am receiving massive amount of bogus connections from ttnet.net.tr and their DSL subscribers. what is the best way to deal with it? contact their abuse email? i cannot block the IPs. there are way too many different ones. how is it possible to do…
Daniel
1
vote
2 answers

source and destination ports on TCP connections

shouldnt TCP connections made to port 80 come from port 80 as well? or what port do they usually come from when a regular user has a regular browser? i wonder because i wonder if i can limit incoming ports on my firewall tcp 6 156441…
Daniel
1
vote
4 answers

"Allow Outgoing Connections" in Mac OS X Client?

System Preferences > Security > Firewall only gives you the option to "Allow Incoming Connections" to applications of your choice. My understanding is that Mac OS X does not have a built-in way to block "Outgoing Connections" on a per application…
username
  • 4,755
  • 19
  • 55
  • 78
1
vote
2 answers

Microsoft Azure Backup Server TCP/UDP Ports to open

Planning to install Microsoft Azure Backup Server in our production environment which is firewall restricted, but I could not find any documents which specify the exact TCP/UDP port requirements. What are the TCP/UDP ports that needs to be open for…
Jenson Joseph
  • 11
  • 1
  • 3
1
vote
1 answer

Azure load balancer security group attached to NAT pools

I'm looking to lock down a set of Azure load balancer NAT rules to certain CIDR address ranges via network security groups, for the purpose of not directly exposing SSH/RDP ports to the internet. The load balancer is bound to a frontend static IP…
Elijah Glover
  • 11
  • 2
1
vote
2 answers

Which Ports need to be accessible on a Domain Controller for Clients to logon?

We are currently segmenting our network. We will move the servers in another subnet than the clients. Of course the clients still need access to the domain controller to authenticate against it. I found various articles about the ports that need to…
davidb
  • 246
  • 1
  • 5
  • 16
1
vote
1 answer

Cisco ASA: Part of the traffic via VPN is blocked

We inherited the management of an ASA 5520 running IOS 8.2(3) from a previous company, and now we are switching the connectivity to a VPN from a LAN link directly connected to one of ASA interfaces. Our skills on IOS are not very high. While traffic…
Qippur
  • 135
  • 1
  • 10
1
vote
1 answer

How can I configure an HAProxy server running behind a firewall?

I am having trouble with the following: I am setting up an HAProxy load balancer on CentOS 7 behind a firewall. The firewall on the HAProxy server as well as the outside firewall are configured so that the necessary ports can be accessed. Everything…
jp12345
  • 11
  • 1
  • 3
1
vote
0 answers

CISCO ASA ASDM Allow internal IP to access external IP

I'm running ASDM 7.2 and have 2 servers on the same local ip range that can communicate ok. These 2 servers have external IP's and I need to get them communicating on the external IP's but this fails. I'm not able to ping either server using the…
jaseUK
  • 173
  • 8
1
vote
0 answers

Trying to have a static IP with Elastic Beanstalk applications

My goal is to deploy a web application to Elastic Beanstalk and allow for a user to access that application from their corporate network. Their network controls access to sites using IP addresses and IP address ranges. I'm not aware of any way to…
80bower
  • 233
  • 1
  • 9
1
vote
1 answer

Accessing internally stored documents via hyperlinks in Websites on a DMZ server

We have a vendor-provided application running internally (LAN) on a Windows/MS-SQL 2012 server, providing access via IIS on the same box. The application is able to store attached documents - these are physically held in a share on this…
user360712
  • 11
  • 1
1
vote
2 answers

Security concerns of having IPv6 (tunneling) enabled in network computers

Are there any security concerns having IPv6 and Teredo tunneling enabled in Win Vista/7? AFAIK, using Teredo basically allows bypassing of the firewall, as the firewall cannot really filter the contained IPv6 packets. (By firewall, I refer to the…
user19972
1 2 3
99 100