You may have notice packet drops when CSF firewall is enabled and you are downloading something. The only reason is the option PACKET_FILTER = “1″ By default the “PACKET_FILTER” is ON which drops packets that looks illegal or out of sequence. If it’s generating false alarms and causing the valid packet to drop, you should [...]

Here I present an abbreviated explanation of the process of creating firewall and cluster objects. More detailed step-by-step guides are available in sections “Firewall Object” and “Cluster Object” of the Firewall Builder Users Guide. As usual, to create a firewall object I use main menu “Object/New object” which opens a menu of object types: Figure 4. Creating [...]

Here is small script that does this. Debian or Ubuntu GNU/Linux does not comes with any SYS V init script (located in /etc/init.d directory) . You create a script as follows and use it to stop or flush the iptables rules. Please don’t type rules at command prompt. Use the script to speed up work. [...]

http://www.fwbuilder.org Firewall Builder is a firewall configuration and management GUI that supports configuring a wide range of firewalls from a single application. Supported firewalls include Linux iptables, BSD pf, Cisco ASA/PIX, Cisco router access lists and many more. The complete list of supported platforms along with downloadable binary packages and soure code can be found [...]

You may come across with a “numiptent” error message while restarting iptables or whatever firewall (say csf) you have installed on your VPS. The error appear as follows: The VPS iptables rule limit (numiptent) is too low (200/250) – stopping firewall to prevent iptables blocking all connections There is a limit on the number of [...]

#!/bin/sh # A simple shell to build a Firewall anti SYN Flood # Under CentOS, Fedora and RHEL / Redhat Enterprise Linux # servers. # —————————————————————————- # Written by LongVNIT # (c) 2009 lifeLinux under GNU GPL v2.0+ IPT=”iptables” MODPROBE=”modprobe” IF=”eth0″ IP=”192.168.1.112″ PORT=”22 80 443″ CHECK_TIME=60 BAN_TIME=120 HITCOUNT=10 MOD=”ip_tables ip_conntrack iptable_filter ipt_state” # Load Module [...]

While installaing CSF firewall on a plain Linux server, you may notice the “LWP perl module” missing error message: # sh install.sh Configuring for OS Checking for perl modules failed You need to install the LWP perl module (libwww-perl) and then install csf The problem mostly occurs on a plain Linux server where all perl [...]

The default firewall that comes along with Linux is “iptables” and you can use iptables to block Ftp access/port on your server. Completely block Ftp access on the server: # iptables -A INPUT -p tcp –dport 21 -j DROP Block Ftp access for a specific IP address, say 11.12.13.14 # iptables -A INPUT -p tcp [...]

You may come across with a “numiptent” error message while restarting iptables or whatever firewall (say csf) you have installed on your VPS. The error appear as follows: The VPS iptables rule limit (numiptent) is too low (200/250) – stopping firewall to prevent iptables blocking all connections There is a limit on the number of [...]

Question: How do I detect a DDOS (Distributed denial of service) / DOS attack on a Windows Server 2003 / 2000 / 2008? Can I use Linux netstat command syntax to detect DDoS attacks? Answer:A denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a computer resource unavailable to its intended users. [...]