[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Firewall Setup



Paul Stuffins wrote:
> My setup really only needs to allow access, from the internet to the server,
> on ports 80 and 443, for Apache, 60000, for ssh and 3306, for MySQL along
> with access from the server to the Debian repos and 3306, I have a couple
> database servers that I manage from one central location hence needing
> access to and from the server on 3306.

Personally it would make me nervous to expose the mysql port to the
world.

> When I run "shorewall check" I get the following output:
>     shorewall check
>     Checking...
>     Processing /etc/shorewall/shorewall.conf...
>         ERROR: FOREWARD_CLEAR_MARK=Yes requires MARK Target in your kernel
> and iptables
> 
> What do I need to ask my provider to enable on the host node?

Tom Eastep the Shorewall author responded to a very similar question
with this response:

  http://www.mail-archive.com/shorewall-users@lists.sourceforge.net/msg10570.html

Bob

Attachment: signature.asc
Description: Digital signature


Reply to: