02-08-2010
Configuring Linux as a firewall
i have a linux server runnig oracle applications.
i need to access this server from putty using ssh through internet.
i did by registering my static ip with the dnydns.org and i am able to connect to the server.
but now there is no security to authenticate any user as any one knowing the password can login to it.
i thought of configuring the firewall of linux server but the client ip`s are not static and they change continiously.
so thought of keeping one more pc between the server and the router which will do the work of authenticating. but i am confuse as how to configure it to allow the packets coming from the internet after authenticating and to by pass the packets generated from internal LAN?
i have heared abut freeradius package but i am not sure will it work in my case?
thanx in advance
Last edited by u.n.i.x; 02-08-2010 at 06:37 AM..
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I have already compiled the kernel and configured it to run as a firewall. My computer has 2 NICs and is on two seperate networks. I can ping both networks from my computer, but workstations on one network can not ping workstations on the other.
What Scripts or commands do I need to install ? (2 Replies)
Discussion started by: Deuce
2 Replies
2. IP Networking
Hi
does anybody know how we can add more than one ip for NIC(in Redhat Linux 7.2)?
i usually do it by using this command
ifconfig eth0 add <ip addresss> netmask <..............> up
or ;
ip address add 192.168.20.1/24 dev eth0
or
adding it manually to file in... (12 Replies)
Discussion started by: hessam
12 Replies
3. Cybersecurity
Does anyone know where I can find some Documentation on building a linux firewall. (4 Replies)
Discussion started by: aojmoj
4 Replies
4. IP Networking
ON A LINUX NETWORK, HOW DO I ASSIGN IP ADDRESSES TO OTHER TERMINALS AND AFTER THAT HOW I CAN DENY/GRANT ACCESS TO TERMINALS ON A LAN TO MY TERMINAL.PLEASE SPECIFY THE EXACT COMMANDS.kINDLY HELP ME (3 Replies)
Discussion started by: ameya_shaligram
3 Replies
5. Shell Programming and Scripting
could anybody please tell me the best fire wall for linux . (3 Replies)
Discussion started by: Raom
3 Replies
6. UNIX for Advanced & Expert Users
I have set up a linux (red hat 9) box as my main internet router. I am also running a DNS server on it. What are the rules i have to implement to allow DNS queries through the firewall from outside so that the outside world can see my domains? (1 Reply)
Discussion started by: frankkahle
1 Replies
7. Shell Programming and Scripting
Hi,
I want to configure 2-gateways in Linux .
Please tell me how I can achieve this. I am accesing 2-internet
connection through these 2-gateways. So I am looking that
if 1-gets down then also other one is working.
Regards
JAGDISH (1 Reply)
Discussion started by: jagdish.machhi@
1 Replies
8. Infrastructure Monitoring
I am trying to enabling SNMP access and trap forwarding for Linux(RHEL5) using following official url from IBM.
http://publib.boulder.ibm.com/infocenter/eserver/v1r2/index.jsp?topic=/diricinfo/fqm0_t_enabling_snmp_access_and_trap_forwarding_for_linux.html
In my system, snmp and snmplibs are... (1 Reply)
Discussion started by: SiddhV
1 Replies
9. Linux
I' m playng a little retrocomputing.
I have setup a virtual machine with SCO unix(3.2v4.2) on qemu
The machine start, the novell2000 card(ne2k_pci,ne2k_isa) unfortunately not,probably driver issue.
So I try the slirp with this procedure
On SCO
netconfig
add chain..sl ..etc
On... (2 Replies)
Discussion started by: Linusolaradm1
2 Replies
LEARN ABOUT SUNOS
ssh-http-proxy-connect
ssh-http-proxy-connect(1) User Commands ssh-http-proxy-connect(1)
NAME
ssh-http-proxy-connect - Secure Shell proxy for HTTP
SYNOPSIS
/usr/lib/ssh/ssh-http-proxy-connect [-h http_proxy_host] [-p http_proxy_port] connect_host connect_port
DESCRIPTION
A proxy command for ssh(1) that uses HTTP CONNECT. Typical use is where connections external to a network are only allowed via a proxy web
server.
OPTIONS
The following options are supported:
-h http_proxy_host Specifies the proxy web server through which to connect. Overrides the HTTPPROXY and http_proxy environment vari-
ables if they are set.
-p http_proxy_port Specifies the port on which the proxy web server runs. If not specified, port 80 is assumed. Overrides the HTTP-
PROXYPORT and http_proxy environment variables if they are set.
OPERANDS
The following operands are supported:
http_proxy_host The host name or IP address (IPv4 or IPv6) of the proxy.
http_proxy_port The numeric port number to connect to on http_proxy_host.
connect_host The name of the remote host to which the proxy web server is to connect you.
connect_port The numeric port number of the proxy web server to connect you to on http_proxy_host.
EXAMPLES
The recommended way to use a proxy connection command is to configure the ProxyCommand in ssh_config(4) (see Example 1 and Example 2).
Example 3 shows how the proxy command can be specified on the command line when running ssh(1).
Example 1: Setting the proxy from the environment
The following example uses ssh-http-proxy-connect in ssh_config(4) when the proxy is set from the environment:
Host playtime.foo.com
ProxyCommand /usr/lib/ssh/ssh-http-proxy-connect
playtime.foo.com 22
Example 2: Overriding proxy environment variables
The following example uses ssh-http-proxy-connect in ssh_config(4) to override (or if not set) proxy environment variables:
Host playtime.foo.com
ProxyCommand /usr/lib/ssh/ssh-http-proxy-connect -h webcache
-p 8080 playtime.foo.com 22
Example 3: Using the command line
The following example uses ssh-http-proxy-connect from the ssh(1) command line:
example$ ssh -o'ProxyCommand="/usr/lib/ssh/ssh-http-proxy-connect
-h webcache -p 8080 playtime.foo.com 22"' playtime.foo.com
ENVIRONMENT VARIABLES
HTTPPROXY Takes the http_proxy_host operand to specify the default proxy host. Overrides http_proxy if both are set.
HTTPPROXYPORT Takes the http_proxy_port operand to specify the default proxy port. Ignored if HTTPPROXY is not set.
http_proxy URL format for specifying proxy host and port.
EXIT STATUS
The following exit values are returned:
0 Successful completion.
1 An error occurred.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWsshu |
+-----------------------------+-----------------------------+
|Interface Stability |Stable |
+-----------------------------+-----------------------------+
SEE ALSO
ssh(1), ssh-socks5-proxy-connect(1), ssh_config(4), attributes(5)
SunOS 5.10 24 Oct 2001 ssh-http-proxy-connect(1)