[plug] firewall on SuSE SLES9
Denis Brown
dsbrown at cyllene.uwa.edu.au
Tue May 9 15:00:16 WST 2006
At 02:28 PM 9/05/2006, Simon Marko wrote:
>Denis Brown wrote:
>
>>Dear PLUG list members,
>>
>>Had a slight "oops" in regards to a SuSE SLES9-based server. Did an
>>upgrade and one of the patches applied was for firewall. Testing
>>revealed that after the patching my nice shiny ruleset was toast - server
>>pretty much open to the World. Ouch.
<snip>
>Hi Denis: YaST has a firewall configuration tool under "Security And
>Users" > "Firewall"
>Start by choosing your internal and external interfaces, then configure
>the services that should be available on your server.
>The basic list can be extended with custom TCP ports by using the "Expert"
>mode
>After this stage there are some other options like configuring
>masquerading etc.
>
>There wasn't much in the way of VoIP or UDP rule options, but these could
>be hacked in later if you know what you're doing
>
>YaST will work in ncurses mode if the DISPLAY environment variable isn't
>set, just make sure you're using a font which displays ncurses-type
>interfaces nicely or it could get messy.
Thanks Simon.
Should have thought of that (YaST's firewall config tool)- doh!
Cheers,
Denis
More information about the plug
mailing list