Making Proper Preparations

Configuring a firewall without the proper preparation is in general a bad idea. Before you start configuring it, you should understand what exactly it is that you need your firewall to do. For a server that has a public as well as a private network card, you could make a table like the example in Table 30-1.

Table 30-1. Overview of Required Services for Your Firewall

Interface

Service

Inbound/Outbound

Private

SSH

Outbound, inbound

Public

HTTP

Inbound

Public, private

Ping

Outbound

Public, private

DNS

Outbound, inbound

Once you have a simple setup matrix in place, you can start configuring the firewall. Before you start, you should know how a netfilter firewall is organized.

Was this article helpful?

0 0

Post a comment