Go back to fronty page View most popular entries View latest additions Submit tutorials to UnixTutorials.info
UnixTutorials logo

Search results for Build your own gateway firewall

Linux Automating Builds on Linux
Post date: April 12, 2005, 20:04 Category: Miscellaneous Views: 41
Tutorial quote: An automated nightly build is a process for building an application every night using an infrastructure that automatically executes the required steps at the scheduled time, without any human intervention. A well-planned build process not only builds your application, but also provides you and your team with early detection of incompatible changes in the application components and early detection of errors introduced by newly integrated code. When configured and used properly, automated builds are a critical component for ensuring that the application satisfies quality requirements and continues to run as expected.
Linux Three tools to help you configure iptables
Post date: May 25, 2005, 10:05 Category: Network Views: 90
Tutorial quote: Every user whose client connects to the Internet should configure his firewall immediately after installation. Some Linux distributions include firewall configuration as a part of installation, often offering a set of defaults configurations to choose from. However, to ensure that your machine presents the minimum "attack surface" (a measure of the number of vulnerable ports, user accounts, and sockets exposed to attack) to the predatory inhabitants of the Internet, you may need to do some manual configuration of your firewall. Here are three tools that can help.
The Linux kernel (version 2.4 onwards) contains a framework for packet filtering and firewalling using netfilter and iptables. Netfilter is a set of hooks inside the Linux kernel that allows kernel modules to register callback functions with the network stack. Iptables is a generic table structure for the definition of rulesets. Each rule within an IP table consists of a number of classifiers (iptables matches) and one connected action (iptables target). Iptables has extensive documentation that can be accessed online or by typing man iptables at the command line. Yet despite the depth of the documentation available for iptables, its complexity can be baffling.
Linux LCD displays easy to use and easy to build
Post date: May 24, 2005, 14:05 Category: Hardware Views: 113
Tutorial quote: This article presents now the "basic" model: LCD display and 2 buttons; simple and easy to build for everybody.

Lcdproc used to be at the very beginning a program to display some statistics (cpu load, uptime, time, ...) on an external LCD display. Over time it has however evolved into a much more generic solution. Today the lcdproc package contains LCDd, a generic server and LCD driver, plus many clients. One of those clients is still the actual executable called lcdproc which still shows server statistics however there are also others. This client server architecture has the big advantage that you do not need to write your client in a specific language. You just need to use the simple ascii protocol between client and server.
Linux Tuneups and Tweaks for the Better Spam-Trap
Post date: April 14, 2005, 09:04 Category: Network Views: 44
Tutorial quote: In parts 1 and 2 of our thrilling "Building an Anti-Virus/Anti-Spam Gateway" series, we covered the basic steps for setting up SpamAssassin and Clam Anti-virus with Postfix. This installment is devoted to testing and tweaking, and creating whitelists in Amavisd-new. Whitelists are essential when you set up any kind of spam filtering: It's the best way to make sure your wanted mail gets through.
BSD Firewalling with OpenBSD's PF packet filter
Post date: April 18, 2005, 22:04 Category: Network Views: 101
Tutorial quote: PF operates in a world which consists of packets, protocols, connections and ports.

Based on where a packet is coming from or where it's going, which protocol, connection of port it is designated for, PF is able to determine where to lead the packet, or decide if it is to be let through at all.

It's equally possible to direct network traffic based on packet contents, usually referred to as application level filtering, but this is not the kind of thing PF does. We will come back later to some cases where PF will hand off these kinds of tasks to other software, but first let us deal with some basics.

We've already mentioned the firewall concept. One important feature of PF and similar software, perhaps the most important feature, is that it is able to identify and block traffic which is you do not want to let into your local network or let out to the world outside. At some point the term 'firewall' was coined.
Linux HOWTO build a LiveCD from scratch
Post date: December 31, 2005, 21:12 Category: Miscellaneous Views: 147
Tutorial quote: This mini-HowTo will show you how to create your own LiveCD.
Gentoo VHCS2 on Gentoo HowTo
Post date: April 20, 2005, 09:04 Category: Installing Views: 102
Tutorial quote: Want to build web hosting service on top of Gentoo? Well now you can with VHCS2 (Virtual Hosting Control System).
FreeBSD Building a FreeBSD Build System
Post date: April 14, 2006, 20:04 Category: System Views: 24
Tutorial quote: When you finish this article, you will have an unbeatable update system. Even mergemaster will work faster. You will have an update system in which a machine update/upgrade will take less than 10 minutes.
Fedora+Core How To Install A Custom Iptables Firewall
Post date: March 31, 2006, 16:03 Category: Network Views: 27
Tutorial quote: This guide is to show you how to edit your iptables if you're running on a server This guide info came from iptables rocks, but i edited a bunch of data to make it suitable for what i want it to do.
Gentoo Creating a WebDAV server with apache2
Post date: May 26, 2005, 12:05 Category: Network Views: 289
Tutorial quote: I needed a way to share information (both read and write) as easy as possible with friends in a quite restricted environment (firewall). In many cases, WebDAV which uses standard HTTP port 80 for comunication is a good solution for a file server application.