store | blogs | forums | twitter | facebook | wiki | mailing lists | downloads | support portal
Atomic Secure Linux
It is currently Sun Apr 20, 2014 4:15 am

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 6 posts ] 
Author Message
 Post subject: IP Mask
Unread postPosted: Wed Jan 18, 2012 3:48 pm 
Offline
Forum User
Forum User

Joined: Wed Jan 18, 2012 3:43 pm
Posts: 20
Location: Canada
Do I need to set up my IP Tables via the OS or can ASL handle that? Basically I want to block everyone (other than my ip) from being able to access the shell.

I have seen through ASL that there have been a number of brute force attempts that have been blocked but I am not sure how it handles repeated attempts.


Top
 Profile  
 
 Post subject: Re: IP Mask
Unread postPosted: Wed Jan 18, 2012 6:02 pm 
Offline
Long Time Forum Regular
Long Time Forum Regular

Joined: Thu Dec 09, 2004 11:19 am
Posts: 2007
Are we talking about blocking SSH port 22 to all but your own IP? You'd normally do that yourself in whatever firewall you happen to use* (or naked iptables if you have not installed a firewall for any reason)

* APF, Plesk Firewall Module, etc etc.

_________________
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>


Top
 Profile  
 
 Post subject: Re: IP Mask
Unread postPosted: Thu Jan 19, 2012 1:51 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 3548
Location: Chantilly, VA
You can use the ASL firewall manager to do this. Heres a link to a how to for adding rules via the ASL firewall rule manager:

https://www.atomicorp.com/wiki/index.php/ASL_firewall

_________________
Michael Shinn
Atomicorp - Security For Everyone

Co-Author of Troubleshooting Linux Firewalls.


Top
 Profile  
 
 Post subject: Re: IP Mask
Unread postPosted: Mon Jan 23, 2012 4:19 am 
Offline
Forum User
Forum User

Joined: Wed Jan 18, 2012 3:43 pm
Posts: 20
Location: Canada
I've tried adding the rule and using a different ip address so I can be sure it blocks correctly but it doesn't work. Is this firewall on by default or do I need to turn it on somehow?


Top
 Profile  
 
 Post subject: Re: IP Mask
Unread postPosted: Mon Jan 23, 2012 12:46 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 3548
Location: Chantilly, VA
Yes its on by default. How did you create the rules to block SSH and to only allow your IP(s)?

_________________
Michael Shinn
Atomicorp - Security For Everyone

Co-Author of Troubleshooting Linux Firewalls.


Top
 Profile  
 
 Post subject: Re: IP Mask
Unread postPosted: Fri Feb 10, 2012 3:15 am 
Offline
Forum User
Forum User

Joined: Wed Jan 18, 2012 3:43 pm
Posts: 20
Location: Canada
I resolve this by upgrading PLESK and installing their firewall, seems to be working fine.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 6 posts ] 

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group