Results 1 to 1 of 1
Threaded View
-
15th Jun 2014, 01:48 PM #1
How to install KISS Firewall
KISS My Firewall is a FREE iptables script designed for a typical web server. It takes advantage of the latest firewall technologies including stateful packet inspection and connection tracking. It also contains some preventative measures for port scanning, DoS attacks, and IP spoofing, among other things.
KISS My Firewall 2 is very easy to install and does not require any initial configuration. It will work with any stock installation of Ensim WEBppliance Basic & Pro, Plesk, and Webmin. Cpanel installations require some modifications. Available at: Yahoo! GeoCities: Get a web site with easy-to-use site building tools.
What's New in Version 2?
The biggest change is that it does not require any initial configuration. With version 2, you won't automatically lock yourself out of your server unless you set some of the variables incorrectly. It also does extensive error checking and is distributed as a tar file. This solves a lot of the issues that were present with the older version. In addition, version 2 is highly configurable and was tested to work with the latest version of iptables - version 1.2.8.
HOW TO: Install KISS My Firewall
1) When logged in as root ( "su -" ), type:
2) cd /usr/bin
3) Download KISS firewall
Code:wget http://www.geocities.com/steve93138/kiss-2.0.1.tar.gz
Code:tar zxvf kiss-2.0.1.tar.gz
5) Editing the config
Code:pico -w /usr/bin/kiss
# Uncomment to allow DNS zone transfers
#
#$IPTABLES -A INPUT -i eth0 -p udp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
#$IPTABLES -A INPUT -i eth0 -p tcp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
#$IPTABLES -A OUTPUT -o eth0 -p udp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
#$IPTABLES -A OUTPUT -o eth0 -p tcp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
# Uncomment to allow DNS zone transfers
#
$IPTABLES -A INPUT -i eth0 -p udp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
$IPTABLES -A INPUT -i eth0 -p tcp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p udp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -o eth0 -p tcp --sport 53 --dport 53 -m state --state NEW -j ACCEPT
In the /usr/bin/kiss file scroll down until you see the line: TCP_IN and replace it with this.
TCP_IN="20 21 25 53 80 110 143 443 995 2082:2083 2086:2087 2095:2096 3306"
TCP_OUT="21 22 25 37 43 53 80 443 873 2089"
Ctrl + X then Y
Restart KISS by typing:
Code:kiss restart
Firewall Commands
That's it! To get it running anywhere on the command line, you simply type:
Code:kiss start
Code:kiss stop
Code:kiss status
Code:kiss restart
Areon Reviewed by Areon on . How to install KISS Firewall KISS My Firewall is a FREE iptables script designed for a typical web server. It takes advantage of the latest firewall technologies including stateful packet inspection and connection tracking. It also contains some preventative measures for port scanning, DoS attacks, and IP spoofing, among other things. KISS My Firewall 2 is very easy to install and does not require any initial configuration. It will work with any stock installation of Ensim WEBppliance Basic & Pro, Plesk, and Webmin. Rating: 5
Sponsored Links
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Similar Threads
-
How to install GFXStyles skins?
By system32 in forum vBulletinReplies: 13Last Post: 31st Jul 2009, 10:30 PM -
How to install openvz on CentOS 5.3 32bit
By Nikolasr in forum Server ManagementReplies: 9Last Post: 6th Jul 2009, 03:13 AM -
how to install a custom script on vB?
By royalmarine in forum Webmaster DiscussionReplies: 1Last Post: 29th Jan 2009, 07:27 PM -
how to install Vb !
By Sanny in forum vBulletinReplies: 5Last Post: 24th Aug 2008, 03:50 PM -
How To Install a vB Skin
By WrzBB in forum vBulletinReplies: 1Last Post: 12th Feb 2008, 10:49 AM
themaManager - edit and manage...
Version 4.05 released. Open older version (or...