Tuesday, March 08, 2011

UFW (Uncomplicated Firewall) setup

UFW seems to be the best choice for a CL controlled firewall. iptables seem too complicated to me and Firestarter is designed for GTK, which is not installed, and, probably never will be.
So far the plans are:
  1. Install and configure UFW
  2. Install and configure SSH
  3. Install Samba, Transmission
  4. Create a user account which will host all required services and will be used to ssh to and to control things
  5. Configure /etc/hosts to speed up things a bit
  6. Write up the /etc/samba/smb.conf  

Have disabled the root account:
$ sudo passwd -l root
1: Install and configure UFW 
$ sudo apt-get install ufw
$ sudo ufw allow proto tcp from 192.168.1.101 to any port 22
Allows TCP connection to port 22/ssh from my MainPC (192.168.1.101)
$ sudo ufw deny
Disables all other connections Inbound or Outbound.
$ sudo ufw enable
Enables the firewall and adds to startup script.

2: Install and configure SSH on both PCs
$ sudo apt-get install ssh
Surprisingly enough it did not have to be configured. Security out of the box setup is questionable however.

3:  Install Samba, Transmission
$ sudo apt-get install samba samba-common smbclient samba-doc swat transmission-cli transmission-daemon transmission-common

Steps 4,5 and 6 require further reading, so will edit this later.
Posted by at

2 comments:

  1. Ars Mobilica8 March 2011 at 17:15

    Wow, that is an awesome step-by-step, thanks. (If this is the uncomplicated, I'd hate to see complicated :D )

    ReplyDelete
  2. Korkut Üneli8 March 2011 at 20:36

    i see you are doing nice. keep it up.

    ReplyDelete

Subscribe to: Post Comments (Atom)